Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2022-41858
HistoryNov 22, 2022 - 2:26 p.m.

CVE-2022-41858

2022-11-2214:26:24
redhat.com
access.redhat.com
31
linux kernel
null pointer dereference
slip driver
sl_tx_timeout
blacklist
module
red hat solution

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS

0

Percentile

13.1%

JSON

A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information.

Mitigation

This flaw can be mitigated by preventing the affected slip driver from loading during the boot time, and ensuring the module is added to the blacklist file.

Refer:    
How do I blacklist a kernel module to prevent it from loading automatically?   
https://access.redhat.com/solutions/41278

Related

nessus 51
cbl_mariner 2
veracode 1
prion 1
cvelist 1
nvd 1
osv 4
ubuntucve 1
debiancve 1
cve 1
oraclelinux 5
amazon 3
virtuozzo 2
openvas 21
ubuntu 2
redhat 16
almalinux 1
ibm 1
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2022-41858)
2023-03-20 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-12160)
2023-03-07 00:00:00
OracleVM 3.4 : kernel-uek (OVMSA-2023-0004)
2023-03-09 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-41858 affecting package kernel for versions less than 5.15.87.1-1
2023-02-01 18:39:09
CVE-2022-41858 affecting package kernel 5.10.164.1-1
2023-02-14 02:36:14
veracode
veracode
Denial Of Service (DoS)
2023-03-06 19:20:31
prion
prion
Null pointer dereference
2023-01-17 18:15:00
cvelist
cvelist
CVE-2022-41858
2023-01-17 00:00:00
nvd
nvd
CVE-2022-41858
2023-01-17 18:15:11
osv
osv
CVE-2022-41858
2023-01-17 18:15:11
linux-aws vulnerabilities
2023-02-23 16:09:52
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
2023-03-06 23:32:12
ubuntucve
ubuntucve
CVE-2022-41858
2023-01-17 00:00:00
debiancve
debiancve
CVE-2022-41858
2023-01-17 18:15:11
cve
cve
CVE-2022-41858
2023-01-17 18:15:11
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2023-03-07 00:00:00
kernel security update
2024-01-26 00:00:00
kernel security update
2024-03-07 00:00:00
amazon
amazon
Important: kernel
2024-06-06 20:17:00
Medium: kernel
2022-05-04 01:01:00
Important: kernel
2022-05-31 23:47:00
virtuozzo
virtuozzo
[Important] [Security] Virtuozzo ReadyKernel Patch 156.4 for Virtuozzo Hybrid Server 7.5
2023-05-23 00:00:00
[Important] [Security] Virtuozzo ReadyKernel Patch 161.0 for Virtuozzo Hybrid Server 7.5
2023-09-20 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5884-1)
2023-02-24 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1320)
2023-02-09 00:00:00
Ubuntu: Security Advisory (USN-5926-1)
2023-03-07 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-03-06 00:00:00
Linux kernel (AWS) vulnerabilities
2023-02-23 00:00:00
redhat
redhat
(RHSA-2024:0432) Important: kernel security and bug fix update
2024-01-24 14:40:37
(RHSA-2024:0431) Important: kernel-rt security and bug fix update
2024-01-24 14:40:36
(RHSA-2024:1367) Important: kernel security and bug fix update
2024-03-19 00:11:19
almalinux
almalinux
Important: kernel security update
2024-02-20 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS

0

Percentile

13.1%

JSON
Related for RH:CVE-2022-41858
nessus51cbl_mariner2veracode1prion1cvelist1nvd1osv4ubuntucve1debiancve1cve1oraclelinux5amazon3virtuozzo2openvas21ubuntu2redhat16almalinux1ibm1