CVE-2022-42703

2022-10-0900:00:00

ubuntu.com

linux

kernel

vulnerability

use-after-free

issue

anon_vma

double reuse

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.2%

JSON

mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to
leaf anon_vma double reuse.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-200.211UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-132.148UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-56.62UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-192.243UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-235.269UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1146.158UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1089.97UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1026.30UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1114.120UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1152.167UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-200.211	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-132.148	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-56.62	UNKNOWN
ubuntu	14.04	noarch	linux	< 3.13.0-192.243	UNKNOWN
ubuntu	16.04	noarch	linux	< 4.4.0-235.269	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1146.158	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1089.97	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1026.30	UNKNOWN
ubuntu	14.04	noarch	linux-aws	< 4.4.0-1114.120	UNKNOWN
ubuntu	16.04	noarch	linux-aws	< 4.4.0-1152.167	UNKNOWN