CVE-2022-3646

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-3646

CGA ID

CGA-g283-9xf9-qgwp

Severity

Unknown

Description

A vulnerability, which was classified as problematic, has been found in Linux Kernel. This issue affects the function nilfs_attach_log_writer of the file fs/nilfs2/segment.c of the component BPF. The manipulation leads to memory leak. The attack may be initiated remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-211961 was assigned to this vulnerability.

References

https://images.chainguard.dev/security/CGA-g283-9xf9-qgwp
https://github.com/advisories/GHSA-h2j4-qp68-f436
https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git/commit/?id=d0d51a97063db4704a5ef6bc978dddab1636a306
https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html
https://lists.debian.org/debian-lts-announce/2022/12/msg00034.html
https://vuldb.com/?id.211961
https://security-tracker.debian.org/tracker/CVE-2022-3646

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CVE-2022-3646

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources