CVE-2022-4128
Summary
| CVE | CVE-2022-4128 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-11-28 22:15:00 UTC |
|---|
| Updated | 2023-11-07 03:57:00 UTC |
|---|
| Description | A NULL pointer dereference issue was discovered in the Linux kernel in the MPTCP protocol when traversing the subflow list at disconnect time. A local user could use this flaw to potentially crash the system causing a denial of service. |
|---|
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|
| Operating System |
Linux |
Mptcp Protocol |
All |
All |
All |
All |
References
| Reference | Source | Link | Tags |
|---|
| [PATCH net 1/2] mptcp: fix subflow traversal at disconnect time - Mat Martineau |
|
lore.kernel.org |
|
| [PATCH net 1/2] mptcp: fix subflow traversal at disconnect time - Mat Martineau |
MISC |
lore.kernel.org |
|
| mptcp: fix subflow traversal at disconnect time · torvalds/linux@5c835bb · GitHub |
MISC |
github.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 160583 Oracle Enterprise Linux Security Update for kernel (ELSA-2023-2458)
- 182465 Debian Security Update for linux (CVE-2022-4128)
- 241417 Red Hat Update for kernel security (RHSA-2023:2458)
- 241468 Red Hat Update for kernel-rt (RHSA-2023:2148)
- 941023 AlmaLinux Security Update for kernel (ALSA-2023:2458)
- 941061 AlmaLinux Security Update for kernel-rt (ALSA-2023:2148)
