CVE-2022-24122

kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace.

Published: Jan 29, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-24122
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
fedoraproject / fedora	34	34.x
fedoraproject / fedora	35	35.x
linux / linux_kernel	5.16	5.16.5
linux / linux_kernel	5.14	5.15.19

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f9d87929d451d3e649699d0f1d74f71f77ad38f5
https://github.com/torvalds/linux/commit/f9d87929d451d3e649699d0f1d74f71f77ad38f5
https://lists.fedoraproject.org/archives/list/[email protected]/message/HSR3AI2IQGRKZCHNKF6S25JGDKUEAWWL/
https://lists.fedoraproject.org/archives/list/[email protected]/message/VVSZKUJAZ2VN6LJ35J2B6YD6BOPQTU3B/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSR3AI2IQGRKZCHNKF6S25JGDKUEAWWL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VVSZKUJAZ2VN6LJ35J2B6YD6BOPQTU3B/
https://security.netapp.com/advisory/ntap-20220221-0001/
https://www.openwall.com/lists/oss-security/2022/01/29/1

Vulnerability Database

289,697

CVE-2022-24122