A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges if they have access to the TIPC network.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-2940-1 linux security update
Debian DLA Debian DLA DLA-2941-1 linux-4.19 security update
Debian DSA Debian DSA DSA-5092-1 linux security update
Debian DSA Debian DSA DSA-5096-1 linux security update
Ubuntu USN Ubuntu USN USN-5302-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5337-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5338-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5339-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5362-1 Linux kernel (Intel IOTG) vulnerabilities
Ubuntu USN Ubuntu USN USN-5368-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5377-1 Linux kernel (BlueField) vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-02T23:25:40.398Z

Reserved: 2022-01-31T00:00:00

Link: CVE-2022-0435

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-25T19:15:10.100

Modified: 2024-11-21T06:38:37.323

Link: CVE-2022-0435

cve-icon Redhat

Severity : Important

Publid Date: 2022-02-10T14:00:00Z

Links: CVE-2022-0435 - Bugzilla

cve-icon OpenCVE Enrichment

No data.