CVE-2022-25636

Summary

CVE	CVE-2022-25636
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-02-24 15:15:00 UTC
Updated	2023-11-09 13:57:00 UTC
Description	net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. This is related to nf_tables_offload.

Risk And Classification

Problem Types: CWE-269

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	11.0	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Hardware	Netapp	Baseboard Management Controller H300e	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H300s	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H410c	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H410s	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H500e	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H500s	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H700e	-	All	All	All
Hardware	Netapp	Baseboard Management Controller H700s	-	All	All	All
Hardware	Netapp	H300e	-	All	All	All
Hardware	Netapp	H300s	-	All	All	All
Hardware	Netapp	H410c	-	All	All	All
Hardware	Netapp	H410s	-	All	All	All
Hardware	Netapp	H500e	-	All	All	All
Hardware	Netapp	H500s	-	All	All	All
Hardware	Netapp	H700e	-	All	All	All
Hardware	Netapp	H700s	-	All	All	All
Application	Oracle	Communications Cloud Native Core Binding Support Function	22.1.3	All	All	All
Application	Oracle	Communications Cloud Native Core Network Exposure Function	22.1.1	All	All	All
Application	Oracle	Communications Cloud Native Core Policy	22.2.0	All	All	All

References

Reference	Source	Link	Tags
oss-security - Re: Linux kernel: heap out of bounds write in nf_dup_netdev.c since 5.4	MLIST	www.openwall.com
The Discovery and Exploitation of CVE-2022-25636 · Nick Gregory	MISC	nickgregory.me
Debian -- Security Information -- DSA-5095-1 linux	DEBIAN	www.debian.org
oss-security - Linux kernel: heap out of bounds write in nf_dup_netdev.c since 5.4	MISC	www.openwall.com
Kernel Live Patch Security Notice LSN-0085-1 ≈ Packet Storm	MISC	packetstormsecurity.com
CVE-2022-25636 Linux Kernel Vulnerability in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
kernel/git/netfilter/nf.git - Netfilter Group nf tree	MISC	git.kernel.org
GitHub - Bonfee/CVE-2022-25636: CVE-2022-25636	MISC	github.com
Oracle Critical Patch Update Advisory - July 2022	N/A	www.oracle.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159647 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9182)
159665 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9181)
159727 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9245)
159729 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9244)
159766 Oracle Enterprise Linux Security Update for kernel (ELSA-2022-1550)
179115 Debian Security Update for linux (DSA 5095-1)
183034 Debian Security Update for linux (CVE-2022-25636)
198694 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5317-1)
198695 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5318-1)
198728 Ubuntu Security Notification for Linux kernel (Intel IOTG) Vulnerabilities (USN-5362-1)
240220 Red Hat Update for kernel-rt (RHSA-2022:1413)
240221 Red Hat Update for kpatch-patch (RHSA-2022:1418)
240224 Red Hat Update for kernel security (RHSA-2022:1455)
240237 Red Hat Update for kpatch-patch (RHSA-2022:1535)
240243 Red Hat Update for kernel-rt (RHSA-2022:1555)
240249 Red Hat Update for kernel (RHSA-2022:1550)
353213 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.4-2022-024
353214 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.10-2022-012
354468 Amazon Linux Security Advisory for kernel : ALAS2022-2022-185
354499 Amazon Linux Security Advisory for kernel : ALAS2022-2022-042
354542 Amazon Linux Security Advisory for kernel : ALAS-2022-185
355199 Amazon Linux Security Advisory for kernel : ALAS2023-2023-070
376925 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2022:0125)
377124 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2022:0029)
6140109 AWS Bottlerocket Security Update for kernel (GHSA-7hf7-4wvh-89m4)
751952 OpenSUSE Security Update for Linux Kernel (openSUSE-SU-2022:1039-1)
751956 OpenSUSE Security Update for the Linux Kernel (openSUSE-SU-2022:1037-1)
752016 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1039-1)
753132 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 2 for SLE 15 SP3) (SUSE-SU-2022:0978-1)
753289 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 15 for SLE 15 SP3) (SUSE-SU-2022:1034-1)
753327 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 13 for SLE 15 SP3) (SUSE-SU-2022:0998-1)
753348 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1038-1)
753422 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1037-1)
753487 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 10 for SLE 15 SP3) (SUSE-SU-2022:0984-1)
940484 AlmaLinux Security Update for kernel (ALSA-2022:1550)
960120 Rocky Linux Security Update for kernel (RLSA-2022:1550)
960121 Rocky Linux Security Update for kernel-rt (RLSA-2022:1555)