CVE-2022-41222
mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move.
| Software | From | Fixed in |
|---|---|---|
| debian / debian_linux | 10.0 | 10.0.x |
| linux / linux_kernel | 5.11 | 5.12.18 |
| linux / linux_kernel | 5.13 | 5.13.3 |
| linux / linux_kernel | 5.5 | 5.10.137 |
| linux / linux_kernel | 5.0 | 5.4.211 |
| netapp / hci_baseboard_management_controller | h300s | h300s.x |
| netapp / hci_baseboard_management_controller | h500s | h500s.x |
| netapp / hci_baseboard_management_controller | h700s | h700s.x |
| netapp / hci_baseboard_management_controller | h410s | h410s.x |
| netapp / hci_baseboard_management_controller | h410c | h410c.x |
| canonical / ubuntu_linux | 18.04 | 18.04.x |
| canonical / ubuntu_linux | 20.04 | 20.04.x |
| canonical / ubuntu_linux | 22.04 | 22.04.x |
- http://packetstormsecurity.com/files/168466/Linux-Stable-5.4-5.10-Use-After-Free-Race-Condition.html
- http://packetstormsecurity.com/files/171005/Kernel-Live-Patch-Security-Notice-LNS-0091-1.html
- https://bugs.chromium.org/p/project-zero/issues/detail?id=2347
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.13.3
- https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=97113eb39fa7972722ff490b947d8af023e1f6a2
- https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html
- https://security.netapp.com/advisory/ntap-20230214-0008/
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime