Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
rosalinuxROSA LABROSA-SA-2024-2415
HistoryMay 07, 2024 - 7:41 a.m.

Advisory ROSA-SA-2024-2415

2024-05-0707:41:19
ROSA LAB
abf.rosalinux.ru
2
advisory
rosa-sa-2024-2415
hwloc 2.7.1
rosa-chrome
cve-2022-47022
glibc-cpuset
denial of service
topology-linux.c
fixed

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

software: hwloc 2.7.1
OS: ROSA-CHROME

package_evr_string: hwloc-2.7.1-2

CVE-ID: CVE-2022-47022
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: A problem discovered in open-mpi hwloc allows attackers to cause denial of service or other unspecified impacts via glibc-cpuset in topology-linux.c.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update hwloc

OSVersionArchitecturePackageVersionFilename
ROSAanynoarchhwloc< 2.7.1UNKNOWN

Related

cbl_mariner 1
nessus 3
alpinelinux 1
veracode 1
amazon 2
debiancve 1
cvelist 1
ubuntucve 1
prion 1
cve 1
redhatcve 1
nvd 1
osv 1
photon 2
cbl_mariner
cbl_mariner
CVE-2022-47022 affecting package hwloc for versions less than 2.5.0-2
2023-09-13 02:10:38
nessus
nessus
Amazon Linux 2023 : hwloc, hwloc-devel, hwloc-gui (ALAS2023-2023-335)
2023-09-08 00:00:00
Amazon Linux 2 : hwloc (ALAS-2023-2237)
2023-09-08 00:00:00
Amazon Linux AMI : hwloc (ALAS-2023-1833)
2023-09-25 00:00:00
alpinelinux
alpinelinux
CVE-2022-47022
2023-08-22 19:16:00
veracode
veracode
Denial Of Service (DoS)
2023-09-18 03:21:17
amazon
amazon
Medium: hwloc
2023-09-13 23:15:00
Medium: hwloc
2023-08-31 22:30:00
debiancve
debiancve
CVE-2022-47022
2023-08-22 19:16:30
cvelist
cvelist
CVE-2022-47022
2023-08-22 00:00:00
ubuntucve
ubuntucve
CVE-2022-47022
2023-08-22 00:00:00
prion
prion
Design/Logic Flaw
2023-08-22 19:16:00
cve
cve
CVE-2022-47022
2023-08-22 19:16:30
redhatcve
redhatcve
CVE-2022-47022
2023-08-30 19:42:35
nvd
nvd
CVE-2022-47022
2023-08-22 19:16:30
osv
osv
CVE-2022-47022
2023-08-22 19:16:30
photon
photon
Moderate Photon OS Security Update - PHSA-2023-5.0-0086
2023-09-01 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0463
2023-09-01 00:00:00

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for ROSA-SA-2024-2415
cbl_mariner1nessus3alpinelinux1veracode1amazon2debiancve1cvelist1ubuntucve1prion1cve1redhatcve1nvd1osv1photon2