CVE-2022-3435

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-3435

CGA ID

CGA-632p-w755-2xfh

Severity

Unknown

Description

A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fib_nh_match of the file net/ipv4/fib_semantics.c of the component IPv4 Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-210357 was assigned to this vulnerability.

References

https://images.chainguard.dev/security/CGA-632p-w755-2xfh
https://github.com/advisories/GHSA-hcgg-5q2q-c9qf
https://vuldb.com/?id.210357
https://lists.debian.org/debian-lts-announce/2022/12/msg00031.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GGHENNMLCWIQV2LLA56BJNFIUZ7WB4IY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2KTU5LFZNQS7YNGE56MT46VHMXL3DD2/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VNN3VFQPECS6D4PS6ZWD7AFXTOSJDSSR/
https://lore.kernel.org/netdev/20221005181257.8897-1-dsahern%40kernel.org/T/#u
https://security-tracker.debian.org/tracker/CVE-2022-3435

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2022-3435

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources