CVE-2022-33743
kernel: network backend may cause Linux netfront to use freed SKBs (XSA-405)
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP (eXpress Data Path), a code label was moved in a way allowing for SKBs having references (pointers) retained for further processing to nevertheless be freed.
El backend de la red puede hacer que Linux netfront use SKB liberados Al agregar lógica para admitir XDP (ruta de datos eXpress), se movió una etiqueta de código de una manera que permitía que los SKB tuvieran referencias (punteros) retenidas para un procesamiento posterior para, no obstante, ser liberados
An incomplete cleanup flaw was found in the Linux kernel’s Xen networking XDP (eXpress Data Path) subsystem. This flaw allows a local user to crash the system.
*Credits:
This issue was discovered by Jan Beulich of SUSE.
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-06-15 CVE Reserved
- 2022-07-05 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-459: Incomplete Cleanup
CAPEC
References (6)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.openwall.com/lists/oss-security/2022/07/05/5 | 2022-11-05 | |
| http://xenbits.xen.org/xsa/advisory-405.html | 2022-11-05 |
| URL | Date | SRC |
|---|---|---|
| https://www.debian.org/security/2022/dsa-5191 | 2022-11-05 | |
| https://xenbits.xenproject.org/xsa/advisory-405.txt | 2022-11-05 | |
| https://access.redhat.com/security/cve/CVE-2022-33743 | 2023-05-09 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=2107924 | 2023-05-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.9 <= 5.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 <= 5.18" | - |
Affected
| ||||||
| Xen Search vendor "Xen" | Xen Search vendor "Xen" for product "Xen" | - | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 11.0 Search vendor "Debian" for product "Debian Linux" and version "11.0" | - |
Affected
| ||||||