Branch p8 update bulletin.

Package kernel-image-un-def updated to version 4.19.257-alt0.M80P.1 for branch p8 in task 306331.

Published: 2022-08-05

BDU:2022-07365

Уязвимость подсистемы XFRM ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код, вызвать отказ в обслуживании или оказать другое воздействие на систему

Severity: HIGH (7.0) Vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: MEDIUM (6.0) Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C

References:

CVE-2022-3028

Published: 2022-08-31
Modified: 2024-11-21

CVE-2022-3028

A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an out-of-bounds read and copying it into a socket.

Severity: HIGH (7.0) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.2

Branch p8 update on 2022-09-09

ALT-BU-2022-6100-1

ALT-PU-2022-2582-1

Closed vulnerabilities

BDU:2022-07365

CVE-2022-3028