A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.
References
Link | Resource |
---|---|
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3ac6487e584a1eb54071dbe1212e05b884136704 | Mailing List Patch Vendor Advisory |
https://security.netapp.com/advisory/ntap-20230214-0006/ | Patch Third Party Advisory |
https://www.openwall.com/lists/oss-security/2022/05/20/2 | Mailing List Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
04 Aug 2023, 17:41
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s:*:*:*:*:*:*:* |
|
First Time |
Netapp hci Baseboard Management Controller
Netapp |
|
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230214-0006/ - Patch, Third Party Advisory |
Information
Published : 2022-09-01 21:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-1729
Mitre link : CVE-2022-1729
CVE.ORG link : CVE-2022-1729
JSON object : View
Products Affected
linux
- linux_kernel
netapp
- hci_baseboard_management_controller