CVE-2022-4378 - Vulnerability Details

A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Linux	Linux Kernel
Redhat	Enterprise Linux Rhel Aus Rhel E4s Rhel Els Rhel Eus Rhel Extras Rt Rhel Tus Rhev Hypervisor

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 6 Extended Lifecycle Support
kernel-0:2.6.32-754.50.1.el6	cpe:/o:redhat:rhel_els:6	RHSA-2023:1822	2023-04-18T00:00:00Z
Red Hat Enterprise Linux 7
kernel-rt-0:3.10.0-1160.88.1.rt56.1233.el7	cpe:/a:redhat:rhel_extras_rt:7	RHSA-2023:1092	2023-03-07T00:00:00Z
kernel-0:3.10.0-1160.88.1.el7	cpe:/o:redhat:enterprise_linux:7	RHSA-2023:1091	2023-03-07T00:00:00Z
kpatch-patch	cpe:/o:redhat:enterprise_linux:7	RHSA-2023:1101	2023-03-07T00:00:00Z
Red Hat Enterprise Linux 7.4 Advanced Update Support
kernel-0:3.10.0-693.107.1.el7	cpe:/o:redhat:rhel_aus:7.4	RHSA-2023:1706	2023-04-11T00:00:00Z
Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118)
kernel-0:3.10.0-957.100.1.el7	cpe:/o:redhat:rhel_aus:7.6	RHSA-2023:1705	2023-04-11T00:00:00Z
Red Hat Enterprise Linux 7.7 Advanced Update Support
kernel-0:3.10.0-1062.71.1.el7	cpe:/o:redhat:rhel_aus:7.7	RHSA-2023:0944	2023-02-28T00:00:00Z
Red Hat Enterprise Linux 7.7 Telco Extended Update Support
kernel-0:3.10.0-1062.71.1.el7	cpe:/o:redhat:rhel_tus:7.7	RHSA-2023:0944	2023-02-28T00:00:00Z
Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions
kernel-0:3.10.0-1062.71.1.el7	cpe:/o:redhat:rhel_e4s:7.7	RHSA-2023:0944	2023-02-28T00:00:00Z
kpatch-patch	cpe:/o:redhat:rhel_e4s:7.7	RHSA-2023:0945	2023-02-28T00:00:00Z
Red Hat Enterprise Linux 8
kernel-rt-0:4.18.0-425.19.2.rt7.230.el8_7	cpe:/a:redhat:enterprise_linux:8::nfv	RHSA-2023:1584	2023-04-04T00:00:00Z
kernel-0:4.18.0-425.19.2.el8_7	cpe:/o:redhat:enterprise_linux:8	RHSA-2023:1566	2023-04-04T00:00:00Z
kpatch-patch	cpe:/o:redhat:enterprise_linux:8	RHSA-2023:1659	2023-04-05T00:00:00Z
Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions
kernel-0:4.18.0-147.80.1.el8_1	cpe:/o:redhat:rhel_e4s:8.1	RHSA-2023:0856	2023-02-21T00:00:00Z
kpatch-patch	cpe:/o:redhat:rhel_e4s:8.1	RHSA-2023:0858	2023-02-21T00:00:00Z
Red Hat Enterprise Linux 8.2 Advanced Update Support
kernel-0:4.18.0-193.100.1.el8_2	cpe:/o:redhat:rhel_aus:8.2	RHSA-2023:1109	2023-03-07T00:00:00Z
Red Hat Enterprise Linux 8.2 Telecommunications Update Service
kernel-rt-0:4.18.0-193.100.1.rt13.151.el8_2	cpe:/a:redhat:rhel_tus:8.2::nfv	RHSA-2023:1110	2023-03-07T00:00:00Z
kernel-0:4.18.0-193.100.1.el8_2	cpe:/o:redhat:rhel_tus:8.2	RHSA-2023:1109	2023-03-07T00:00:00Z
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
kpatch-patch	cpe:/o:redhat:rhel_e4s:8.2	RHSA-2023:1103	2023-03-07T00:00:00Z
kernel-0:4.18.0-193.100.1.el8_2	cpe:/o:redhat:rhel_e4s:8.2	RHSA-2023:1109	2023-03-07T00:00:00Z
Red Hat Enterprise Linux 8.4 Extended Update Support
kernel-rt-0:4.18.0-305.82.1.rt7.154.el8_4	cpe:/a:redhat:rhel_eus:8.4::nfv	RHSA-2023:1220	2023-03-14T00:00:00Z
kernel-0:4.18.0-305.82.1.el8_4	cpe:/o:redhat:rhel_eus:8.4	RHSA-2023:1221	2023-03-14T00:00:00Z
kpatch-patch	cpe:/o:redhat:rhel_eus:8.4	RHSA-2023:1251	2023-03-15T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Support
kernel-0:4.18.0-372.57.1.el8_6	cpe:/o:redhat:rhel_eus:8.6	RHSA-2023:3388	2023-05-31T00:00:00Z
kpatch-patch	cpe:/o:redhat:rhel_eus:8.6	RHSA-2023:3431	2023-06-05T00:00:00Z
Red Hat Enterprise Linux 9
kernel-0:5.14.0-162.18.1.el9_1	cpe:/a:redhat:enterprise_linux:9	RHSA-2023:0951	2023-02-28T00:00:00Z
kernel-rt-0:5.14.0-162.18.1.rt21.181.el9_1	cpe:/a:redhat:enterprise_linux:9::nfv	RHSA-2023:0979	2023-02-28T00:00:00Z
kernel-0:5.14.0-162.18.1.el9_1	cpe:/o:redhat:enterprise_linux:9	RHSA-2023:0951	2023-02-28T00:00:00Z
kpatch-patch	cpe:/o:redhat:enterprise_linux:9	RHSA-2023:1008	2023-02-28T00:00:00Z
Red Hat Enterprise Linux 9.0 Extended Update Support
kernel-0:5.14.0-70.49.1.el9_0	cpe:/a:redhat:rhel_eus:9.0	RHSA-2023:1202	2023-03-14T00:00:00Z
kernel-rt-0:5.14.0-70.49.1.rt21.120.el9_0	cpe:/a:redhat:rhel_eus:9.0::nfv	RHSA-2023:1203	2023-03-14T00:00:00Z
kpatch-patch	cpe:/o:redhat:rhel_eus:9.0	RHSA-2023:1435	2023-03-23T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8
kernel-0:4.18.0-372.57.1.el8_6	cpe:/o:redhat:rhev_hypervisor:4.4::el8	RHSA-2023:3388	2023-05-31T00:00:00Z
redhat-virtualization-host-0:4.5.3-202306050942_8.6	cpe:/o:redhat:rhev_hypervisor:4.4::el8	RHSA-2023:3491	2023-06-06T00:00:00Z

References

Link	Providers
http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html
https://bugzilla.redhat.com/show_bug.cgi?id=2152548
https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch
https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch
https://nvd.nist.gov/vuln/detail/CVE-2022-4378
https://seclists.org/oss-sec/2022/q4/178
https://www.cve.org/CVERecord?id=CVE-2022-4378

History

Thu, 10 Apr 2025 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2023-01-05T00:00:00.000Z

Updated: 2025-04-10T14:19:42.254Z

Reserved: 2022-12-09T00:00:00.000Z

Link: CVE-2022-4378

Vulnrichment

Updated: 2024-08-03T01:41:44.182Z

NVD

Status : Modified

Published: 2023-01-05T16:15:11.840

Modified: 2025-04-10T15:16:01.227

Link: CVE-2022-4378

Redhat

Severity : Important

Publid Date: 2022-12-09T10:00:00Z

Links: CVE-2022-4378 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-4378", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "dateUpdated": "2025-04-10T14:19:42.254Z", "dateReserved": "2022-12-09T00:00:00.000Z", "datePublished": "2023-01-05T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2023-03-08T00:00:00.000Z"}, "descriptions": [{"lang": "en", "value": "A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system."}], "affected": [{"vendor": "n/a", "product": "kernel", "versions": [{"version": "kernel 6.0.12", "status": "affected"}]}], "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548"}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch"}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch"}, {"url": "https://seclists.org/oss-sec/2022/q4/178"}, {"url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html"}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-131->CWE-120", "cweId": "CWE-131"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T01:41:44.182Z"}, "title": "CVE Program Container", "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch", "tags": ["x_transferred"]}, {"url": "https://seclists.org/oss-sec/2022/q4/178", "tags": ["x_transferred"]}, {"url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html", "tags": ["x_transferred"]}]}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-04-10T14:19:16.617191Z", "id": "CVE-2022-4378", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-10T14:19:42.254Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch", "tags": ["x_transferred"]}, {"url": "https://seclists.org/oss-sec/2022/q4/178", "tags": ["x_transferred"]}, {"url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T01:41:44.182Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2022-4378", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-04-10T14:19:16.617191Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-10T14:19:37.142Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "kernel", "versions": [{"status": "affected", "version": "kernel 6.0.12"}]}], "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548"}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch"}, {"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch"}, {"url": "https://seclists.org/oss-sec/2022/q4/178"}, {"url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html"}], "descriptions": [{"lang": "en", "value": "A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-131", "description": "CWE-131->CWE-120"}]}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2023-03-08T00:00:00.000Z"}}}, "cveMetadata": {"cveId": "CVE-2022-4378", "state": "PUBLISHED", "dateUpdated": "2025-04-10T14:19:42.254Z", "dateReserved": "2022-12-09T00:00:00.000Z", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "datePublished": "2023-01-05T00:00:00.000Z", "assignerShortName": "redhat"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "A42DECFD-6665-4F24-BCD3-16A3A3ADDBDB", "versionEndIncluding": "4.9.337", "versionStartIncluding": "4.9.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "CE0036B3-6621-4D5E-918E-0A7C2689D961", "versionEndIncluding": "4.14.302", "versionStartIncluding": "4.14.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "7A311941-7841-4859-987A-E32C2F7FE719", "versionEndIncluding": "4.19.269", "versionStartIncluding": "4.19.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "5FD7867E-C257-401D-80B8-95925A9B6AD3", "versionEndIncluding": "5.4.228", "versionStartIncluding": "5.4.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "48140F94-AF79-43AC-A343-F2D27DFE92FB", "versionEndIncluding": "5.10.162", "versionStartIncluding": "5.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "CFE6B2ED-4616-4A2D-A854-D023B0A9B55C", "versionEndIncluding": "5.15.86", "versionStartIncluding": "5.15.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "4307E575-C1E7-410E-BC4A-BE551D20E7B0", "versionEndIncluding": "6.0.11", "versionStartIncluding": "6.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system."}, {"lang": "es", "value": "Se encontr\u00f3 una falla de desbordamiento de pila en el subsistema SYSCTL del kernel de Linux en la forma en que un usuario cambia ciertos par\u00e1metros y variables del kernel. Esta falla permite que un usuario local falle o potencialmente aumente sus privilegios en el sistema."}], "id": "CVE-2022-4378", "lastModified": "2025-04-10T15:16:01.227", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2023-01-05T16:15:11.840", "references": [{"source": "secalert@redhat.com", "url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/oss-sec/2022/q4/178"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/oss-sec/2022/q4/178"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-131"}], "source": "secalert@redhat.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2023:1822", "cpe": "cpe:/o:redhat:rhel_els:6", "package": "kernel-0:2.6.32-754.50.1.el6", "product_name": "Red Hat Enterprise Linux 6 Extended Lifecycle Support", "release_date": "2023-04-18T00:00:00Z"}, {"advisory": "RHSA-2023:1092", "cpe": "cpe:/a:redhat:rhel_extras_rt:7", "package": "kernel-rt-0:3.10.0-1160.88.1.rt56.1233.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1091", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "kernel-0:3.10.0-1160.88.1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1101", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1706", "cpe": "cpe:/o:redhat:rhel_aus:7.4", "package": "kernel-0:3.10.0-693.107.1.el7", "product_name": "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date": "2023-04-11T00:00:00Z"}, {"advisory": "RHSA-2023:1705", "cpe": "cpe:/o:redhat:rhel_aus:7.6", "package": "kernel-0:3.10.0-957.100.1.el7", "product_name": "Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118)", "release_date": "2023-04-11T00:00:00Z"}, {"advisory": "RHSA-2023:0944", "cpe": "cpe:/o:redhat:rhel_aus:7.7", "package": "kernel-0:3.10.0-1062.71.1.el7", "product_name": "Red Hat Enterprise Linux 7.7 Advanced Update Support", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:0944", "cpe": "cpe:/o:redhat:rhel_tus:7.7", "package": "kernel-0:3.10.0-1062.71.1.el7", "product_name": "Red Hat Enterprise Linux 7.7 Telco Extended Update Support", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:0944", "cpe": "cpe:/o:redhat:rhel_e4s:7.7", "package": "kernel-0:3.10.0-1062.71.1.el7", "product_name": "Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:0945", "cpe": "cpe:/o:redhat:rhel_e4s:7.7", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:1584", "cpe": "cpe:/a:redhat:enterprise_linux:8::nfv", "package": "kernel-rt-0:4.18.0-425.19.2.rt7.230.el8_7", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-04-04T00:00:00Z"}, {"advisory": "RHSA-2023:1566", "cpe": "cpe:/o:redhat:enterprise_linux:8", "package": "kernel-0:4.18.0-425.19.2.el8_7", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-04-04T00:00:00Z"}, {"advisory": "RHSA-2023:1659", "cpe": "cpe:/o:redhat:enterprise_linux:8", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-04-05T00:00:00Z"}, {"advisory": "RHSA-2023:0856", "cpe": "cpe:/o:redhat:rhel_e4s:8.1", "package": "kernel-0:4.18.0-147.80.1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-02-21T00:00:00Z"}, {"advisory": "RHSA-2023:0858", "cpe": "cpe:/o:redhat:rhel_e4s:8.1", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-02-21T00:00:00Z"}, {"advisory": "RHSA-2023:1109", "cpe": "cpe:/o:redhat:rhel_aus:8.2", "package": "kernel-0:4.18.0-193.100.1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1110", "cpe": "cpe:/a:redhat:rhel_tus:8.2::nfv", "package": "kernel-rt-0:4.18.0-193.100.1.rt13.151.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1109", "cpe": "cpe:/o:redhat:rhel_tus:8.2", "package": "kernel-0:4.18.0-193.100.1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1103", "cpe": "cpe:/o:redhat:rhel_e4s:8.2", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1109", "cpe": "cpe:/o:redhat:rhel_e4s:8.2", "package": "kernel-0:4.18.0-193.100.1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-03-07T00:00:00Z"}, {"advisory": "RHSA-2023:1220", "cpe": "cpe:/a:redhat:rhel_eus:8.4::nfv", "package": "kernel-rt-0:4.18.0-305.82.1.rt7.154.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Extended Update Support", "release_date": "2023-03-14T00:00:00Z"}, {"advisory": "RHSA-2023:1221", "cpe": "cpe:/o:redhat:rhel_eus:8.4", "package": "kernel-0:4.18.0-305.82.1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Extended Update Support", "release_date": "2023-03-14T00:00:00Z"}, {"advisory": "RHSA-2023:1251", "cpe": "cpe:/o:redhat:rhel_eus:8.4", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 8.4 Extended Update Support", "release_date": "2023-03-15T00:00:00Z"}, {"advisory": "RHSA-2023:3388", "cpe": "cpe:/o:redhat:rhel_eus:8.6", "package": "kernel-0:4.18.0-372.57.1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-05-31T00:00:00Z"}, {"advisory": "RHSA-2023:3431", "cpe": "cpe:/o:redhat:rhel_eus:8.6", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-06-05T00:00:00Z"}, {"advisory": "RHSA-2023:0951", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "kernel-0:5.14.0-162.18.1.el9_1", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:0979", "cpe": "cpe:/a:redhat:enterprise_linux:9::nfv", "package": "kernel-rt-0:5.14.0-162.18.1.rt21.181.el9_1", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:0951", "cpe": "cpe:/o:redhat:enterprise_linux:9", "package": "kernel-0:5.14.0-162.18.1.el9_1", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:1008", "cpe": "cpe:/o:redhat:enterprise_linux:9", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-02-28T00:00:00Z"}, {"advisory": "RHSA-2023:1202", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "kernel-0:5.14.0-70.49.1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-03-14T00:00:00Z"}, {"advisory": "RHSA-2023:1203", "cpe": "cpe:/a:redhat:rhel_eus:9.0::nfv", "package": "kernel-rt-0:5.14.0-70.49.1.rt21.120.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-03-14T00:00:00Z"}, {"advisory": "RHSA-2023:1435", "cpe": "cpe:/o:redhat:rhel_eus:9.0", "package": "kpatch-patch", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-03-23T00:00:00Z"}, {"advisory": "RHSA-2023:3388", "cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8", "package": "kernel-0:4.18.0-372.57.1.el8_6", "product_name": "Red Hat Virtualization 4 for Red Hat Enterprise Linux 8", "release_date": "2023-05-31T00:00:00Z"}, {"advisory": "RHSA-2023:3491", "cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8", "package": "redhat-virtualization-host-0:4.5.3-202306050942_8.6", "product_name": "Red Hat Virtualization 4 for Red Hat Enterprise Linux 8", "release_date": "2023-06-06T00:00:00Z"}], "bugzilla": {"description": "kernel: stack overflow in do_proc_dointvec and proc_skip_spaces", "id": "2152548", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2152548"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-120->CWE-131->CWE-787", "details": ["A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.", "A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system."], "mitigation": {"lang": "en:us", "value": "A possible workaround is preventing regular users from accessing sysctl files (such as /proc/sys/net/ipv4/tcp_rmem and similar). Also, preventing a user from increasing privileges with commands such as \"unshare -rn\" (that allows obtaining net namespace privileges required to access /proc/sys/net/ipv4/tcp_rmem)."}, "name": "CVE-2022-4378", "public_date": "2022-12-09T10:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-4378\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-4378\nhttps://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch\nhttps://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch\nhttps://seclists.org/oss-sec/2022/q4/178"], "statement": "To trigger this issue, the user needs some privileges (for example, access to the sysctl files), but usually less than root or CAP_NET_ADMIN.", "threat_severity": "Important"}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object