CVE-2022-41222

2022-09-2100:00:00

ubuntu.com

linux

kernel

use-after-free

vulnerability

cve-2022-41222

pud

move

tlb

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

41.2%

JSON

mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a
stale TLB because an rmap lock is not held during a PUD move.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchlinux< 5.4.0-132.148UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1089.97UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1089.97~18.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1095.101UNKNOWN
ubuntu18.04noarchlinux-azure-5.4< 5.4.0-1095.101~18.04.1UNKNOWN
ubuntu20.04noarchlinux-azure-fde< 5.4.0-1095.101UNKNOWN
ubuntu20.04noarchlinux-bluefield< 5.4.0-1050.56UNKNOWN
ubuntu20.04noarchlinux-gcp< 5.4.0-1093.102UNKNOWN
ubuntu18.04noarchlinux-gcp-5.4< 5.4.0-1093.102~18.04.1UNKNOWN
ubuntu20.04noarchlinux-gke< 5.4.0-1087.94UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	linux	< 5.4.0-132.148	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1089.97	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< 5.4.0-1089.97~18.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1095.101	UNKNOWN
ubuntu	18.04	noarch	linux-azure-5.4	< 5.4.0-1095.101~18.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-azure-fde	< 5.4.0-1095.101	UNKNOWN
ubuntu	20.04	noarch	linux-bluefield	< 5.4.0-1050.56	UNKNOWN
ubuntu	20.04	noarch	linux-gcp	< 5.4.0-1093.102	UNKNOWN
ubuntu	18.04	noarch	linux-gcp-5.4	< 5.4.0-1093.102~18.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-gke	< 5.4.0-1087.94	UNKNOWN