CVE-2022-2906

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-2906

Severity

Unknown

Description

An attacker can leverage this flaw to gradually erode available memory to the point where named crashes for lack of resources. Upon restart the attacker would have to begin again, but nevertheless there is the potential to deny service.

References

https://images.chainguard.dev/security/CGA-r5cx-vp7m-x957
https://github.com/advisories/GHSA-pqxc-54m5-8r8m
https://kb.isc.org/docs/cve-2022-2906
https://security.gentoo.org/glsa/202210-25
http://www.openwall.com/lists/oss-security/2022/09/21/3
https://security.alpinelinux.org/vuln/CVE-2022-2906
https://security-tracker.debian.org/tracker/CVE-2022-2906

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2022-2906

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources