CVE-2022-2938

A flaw was found in the Linux kernel's implementation of Pressure Stall Information. While the feature is disabled by default, it could allow an attacker to crash the system or have other memory-corruption side effects.

Published: Aug 23, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-2938
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	5.2	5.4.177
linux / linux_kernel	5.5	5.10.97
linux / linux_kernel	5.11	5.15.19
linux / linux_kernel	5.16	5.16.5
redhat / enterprise_linux	8.0	8.0.x
fedoraproject / fedora	35	35.x

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a06247c6804f1a7c86a2e5398a4c1f1db1471848
https://security.netapp.com/advisory/ntap-20221223-0002/

Vulnerability Database

CVE-2022-2938