Anolis OS update for kernel



| Updated: 2025-03-28
Risk Medium
Patch available YES
Number of vulnerabilities 50
CVE-ID CVE-2021-33655
CVE-2021-33656
CVE-2022-0494
CVE-2022-0500
CVE-2022-1012
CVE-2022-1184
CVE-2022-1462
CVE-2022-1652
CVE-2022-1729
CVE-2022-1734
CVE-2022-1786
CVE-2022-1789
CVE-2022-1836
CVE-2022-33981
CVE-2022-1966
CVE-2022-32250
CVE-2022-1972
CVE-2022-2078
CVE-2022-1974
CVE-2022-1975
CVE-2022-21123
CVE-2022-21125
CVE-2022-21166
CVE-2022-21499
CVE-2022-21505
CVE-2022-2153
CVE-2022-2318
CVE-2022-23816
CVE-2022-2503
CVE-2022-2586
CVE-2022-2588
CVE-2022-26365
CVE-2022-33740
CVE-2022-33741
CVE-2022-33742
CVE-2022-2639
CVE-2022-28893
CVE-2022-29581
CVE-2022-2959
CVE-2022-2978
CVE-2022-29900
CVE-2022-29901
CVE-2022-32296
CVE-2022-32981
CVE-2022-33743
CVE-2022-33744
CVE-2022-34918
CVE-2022-36123
CVE-2022-36879
CVE-2022-36946
CWE-ID CWE-787
CWE-200
CWE-401
CWE-416
CWE-125
CWE-362
CWE-476
CWE-119
CWE-248
CWE-284
CWE-254
CWE-843
CWE-264
CWE-415
CWE-191
CWE-911
CWE-1037
CWE-330
CWE-399
CWE-20
Exploitation vector Network
Public exploit Public exploit code for vulnerability #15 is available.
Public exploit code for vulnerability #16 is available.
Public exploit code for vulnerability #17 is available.
Public exploit code for vulnerability #18 is available.
Vulnerability #30 is being exploited in the wild.
Vulnerability #31 is being exploited in the wild.
Public exploit code for vulnerability #36 is available.
Vulnerability #47 is being exploited in the wild.
Public exploit code for vulnerability #50 is available.
Vulnerable software
 Anolis OS
Operating systems & Components / Operating system

python3-perf
Operating systems & Components / Operating system package or component

perf
Operating systems & Components / Operating system package or component

kernel-tools-libs-devel
Operating systems & Components / Operating system package or component

kernel-tools-libs
Operating systems & Components / Operating system package or component

kernel-tools
Operating systems & Components / Operating system package or component

kernel-modules-internal
Operating systems & Components / Operating system package or component

kernel-modules-extra
Operating systems & Components / Operating system package or component

kernel-modules
Operating systems & Components / Operating system package or component

kernel-headers
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-debug-modules-extra
Operating systems & Components / Operating system package or component

kernel-debug-modules
Operating systems & Components / Operating system package or component

kernel-debug-devel
Operating systems & Components / Operating system package or component

kernel-debug-core
Operating systems & Components / Operating system package or component

kernel-debug
Operating systems & Components / Operating system package or component

kernel-core
Operating systems & Components / Operating system package or component

kernel
Operating systems & Components / Operating system package or component

bpftool
Operating systems & Components / Operating system package or component

Vendor OpenAnolis

Security Bulletin

This security bulletin contains information about 50 vulnerabilities.

1) Out-of-bounds write

EUVDB-ID: #VU65833

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-33655

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in FBIOPUT_VSCREENINFO IOCTL. A local user can trigger an out-of-bounds write error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Out-of-bounds write

EUVDB-ID: #VU66590

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-33656

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when setting font with malicous data by ioctl cmd PIO_FONT. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Information disclosure

EUVDB-ID: #VU64259

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-0494

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output in the scsi_ioctl() function in drivers/scsi/scsi_ioctl.c in the Linux kernel. A local user with a special user privilege (CAP_SYS_ADMIN or CAP_SYS_RAWIO) can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Out-of-bounds write

EUVDB-ID: #VU65298

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-0500

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in unrestricted eBPF usage by the BPF_BTF_LOAD in Linux kernel. A local user can trigger an out-of-bounds write error in BPF subsystem and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Memory leak

EUVDB-ID: #VU64079

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-1012

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to insufficient randomization in the net/ipv4/tcp.c when calculating port offsets in Linux kernel cause by small table perturb size. A remote attacker can cause memory leak and gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Use-after-free

EUVDB-ID: #VU64438

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1184

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service attack.

The vulnerability exists due to a use-after-free error in fs/ext4/namei.c:dx_insert_block() function in the Linux kernel’s filesystem sub-component.. A local user can trigger use-after-free and perform a denial of service attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Out-of-bounds read

EUVDB-ID: #VU66591

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1462

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform denial of service (DoS) attack.

The vulnerability exists due to a boundary condition within the the Linux kernel’s TeleTYpe subsystem caused by a race condition when using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory file. A local user can trigger an out-of-bounds read error and crash the system or read random kernel memory.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU64434

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1652

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to use-after-free error in the bad_flp_intr() function. A local user can execute a specially-crafted program to cause a denial of service condition on the system or escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Race condition

EUVDB-ID: #VU64156

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1729

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within sys_perf_event_open() in Linux kernel. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Use-after-free

EUVDB-ID: #VU64082

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1734

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to Marvell NFC device driver implementation in the Linux kernel did not properly perform memory cleanup operations in some situations. A local user can trigger use-after-free to escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Use-after-free

EUVDB-ID: #VU64260

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1786

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring. A local user can trigger use-after-free to crash the system or escalate their privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) NULL pointer dereference

EUVDB-ID: #VU64261

Risk: Low

CVSSv4.0: 2.2 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1789

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference in kvm_mmu_invpcid_gva. A local attacker can trigger vulnerability to perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Use-after-free

EUVDB-ID: #VU64087

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1836

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to use-after-free error in the drivers/block/floppy.c in the floppy driver module in the Linux kernel when working with raw_cmd_ioctl and seek_interrupt. A local user can trigger use-after-free to escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Use-after-free

EUVDB-ID: #VU64944

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33981

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform denial of service attack.

The vulnerability exists due to a use-after-free error in drivers/block/floppy.c in the Linux kernel when deallocating raw_cmd in the raw_cmd_ioctl function(). A local user can trigger use-after-free and perform denial of service attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Use-after-free

EUVDB-ID: #VU64070

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-1966

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux kernel's Netfilter subsystem in net/netfilter/nf_tables_api.c. A local user can trigger use-after-free error to escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

16) Use-after-free

EUVDB-ID: #VU64668

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-32250

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free incorrect NFT_STATEFUL_EXPR in net/netfilter/nf_tables_api.c in Linux kernel. A local user with ability to create user/net namespaces can execute arbitrary code with root privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

17) Out-of-bounds write

EUVDB-ID: #VU64073

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-1972

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when processing untrusted input in the Linux kernel's netfilter subsystem. A local user can trigger out-of-bounds write to escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

18) Buffer overflow

EUVDB-ID: #VU65642

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-2078

CWE-ID: CWE-119 - Memory corruption

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the nft_set_desc_concat_parse() function in Linux kernel. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.


Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

19) Use-after-free

EUVDB-ID: #VU64263

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1974

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local privileged user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. A local attacker with CAP_NET_ADMIN privilege can leak kernel information and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Uncaught Exception

EUVDB-ID: #VU64264

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1975

CWE-ID: CWE-248 - Uncaught Exception

Exploit availability: No

Description

The vulnerability allows a remote attacker on the local network to perform a denial of service (DoS) attack.

The vulnerability exists due to an uncaught exception error in the Linux kernel. A remote attacker on the local network can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Information disclosure

EUVDB-ID: #VU64364

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-21123

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows an attacker to gain access to potentially sensitive information.

The vulnerability exists in Intel processors due to excessive data output when DirectPath I/O (PCI-Passthrough) is utilized. An attacker (both local and remote) with administrative access to a virtual machine that has an attached DirectPath I/O (PCI-Passthrough) device can obtain information stored in physical memory about the hypervisor or other virtual machines that reside on the same host.


Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Information disclosure

EUVDB-ID: #VU64365

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-21125

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows an attacker to gain access to potentially sensitive information.

The vulnerability exists in Intel processors due to excessive data output when DirectPath I/O (PCI-Passthrough) is utilized. An attacker (both local and remote) with administrative access to a virtual machine that has an attached DirectPath I/O (PCI-Passthrough) device can obtain information stored in physical memory about the hypervisor or other virtual machines that reside on the same host.



Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Information disclosure

EUVDB-ID: #VU64366

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-21166

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows an attacker to gain access to potentially sensitive information.

The vulnerability exists in Intel processors due to excessive data output when DirectPath I/O (PCI-Passthrough) is utilized. An attacker (both local and remote) with administrative access to a virtual machine that has an attached DirectPath I/O (PCI-Passthrough) device can obtain information stored in physical memory about the hypervisor or other virtual machines that reside on the same host.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Improper access control

EUVDB-ID: #VU63961

Risk: Low

CVSSv4.0: 5.6 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-21499

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a local user to bypass implemented security restrictions.

The vulnerability exists due to improper access restrictions to the kernel debugger when booted in secure boot environments. A local privileged user can bypass UEFI Secure Boot restrictions.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) Security features bypass

EUVDB-ID: #VU66592

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-21505

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows an attacker to bypass implemented security restrictions.

The vulnerability exists due to incorrect implementation of the IMA lockdown feature. If IMA appraisal is used with the "ima_appraise=log" boot param, lockdown can be defeated with kexec on any machine with Secure Boot. An attacker with physical access to device can bypass Secure Boot mechanism.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) NULL pointer dereference

EUVDB-ID: #VU64920

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2153

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Linux kernel’s KVM when attempting to set a SynIC IRQ. A local user on the host can issue specific ioctl calls, causing a denial of service.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Use-after-free

EUVDB-ID: #VU65318

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2318

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service attack.

The vulnerability exists due to a use-after-free error caused by timer handler in net/rose/rose_timer.c of linux. A local user can exploit the vulnerability to perform a denial of service attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) Type Confusion

EUVDB-ID: #VU65219

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-23816

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a branch type confusion. A local user can force the branch predictor to predict the wrong branch type and gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU66810

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2503

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to the way dm-verity is used to restrict module/firmware loads to trusted root filesystem in LoadPin builds. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear target and bypass verification till reboot. This allows root to bypass LoadPin and can be used to load untrusted and unverified kernel modules and firmware, which implies arbitrary kernel execution and persistence for peripherals that do not verify firmware updates.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) Use-after-free

EUVDB-ID: #VU66396

Risk: Low

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2022-2586

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the the netfilter subsystem implementation in Linux kernel when preventing one nft object from referencing an nft set in another nft table. A local user can trigger a use-after-free error and execute arbitrary code on the system with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

31) Double Free

EUVDB-ID: #VU66397

Risk: Low

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2022-2588

CWE-ID: CWE-415 - Double Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a double free error within the network packet scheduler implementation in the route4_change() function in Linux kernel when removing all references to a route filter before freeing it. A local user can run a specially crafted program to crash the kernel or execute arbitrary code.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

32) Information disclosure

EUVDB-ID: #VU65345

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-26365

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend. A local user can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Information disclosure

EUVDB-ID: #VU65346

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33740

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend. A local user can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

34) Information disclosure

EUVDB-ID: #VU65351

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33741

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to granularity of the grant table doesn't allow sharing less than a 4K page, leading to unrelated data residing in the same 4K page as data shared with a backend being accessible by such backend. A local user can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Information disclosure

EUVDB-ID: #VU65348

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33742

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to granularity of the grant table doesn't allow sharing less than a 4K page, leading to unrelated data residing in the same 4K page as data shared with a backend being accessible by such backend. A local user can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Integer underflow

EUVDB-ID: #VU66812

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-2639

CWE-ID: CWE-191 - Integer underflow

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to integer underflow within the reserve_sfa_size() function in the openvswitch kernel module in Linux kernel. A local user can trigger an out-of-bounds read error and crash the system or escalate privileges.


Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

37) Use-after-free

EUVDB-ID: #VU62074

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-28893

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the SUNRPC subsystem in the Linux kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) Improper update of reference count

EUVDB-ID: #VU63496

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-29581

CWE-ID: CWE-911 - Improper Update of Reference Count

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper update of reference count in net/sched in Linux kernel. A local user can execute arbitrary code with root privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Race condition

EUVDB-ID: #VU66934

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2959

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a missing lock in the pipe_resize_ring() function within the watch queue when performing operations on an object. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Use-after-free

EUVDB-ID: #VU67812

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2978

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the Linux kernel NILFS file system. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Processor optimization removal or modification of security-critical code

EUVDB-ID: #VU65205

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-29900

CWE-ID: CWE-1037 - Processor optimization removal or modification of security-critical code

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a mistrained branch predictions for return instructions. A local user can execute arbitrary speculative code under certain microarchitecture-dependent conditions. The vulnerability was dubbed  RETbleed.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Processor optimization removal or modification of security-critical code

EUVDB-ID: #VU65220

Risk: Low

CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-29901

CWE-ID: CWE-1037 - Processor optimization removal or modification of security-critical code

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to the way non-transparent sharing of branch predictor targets between contexts. A local user can exploit the vulnerability to gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Use of insufficiently random values

EUVDB-ID: #VU64943

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-32296

CWE-ID: CWE-330 - Use of Insufficiently Random Values

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to Linux kernel allowing TCP servers to identify clients by observing what source ports are used. A local user can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) Buffer overflow

EUVDB-ID: #VU65005

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-32981

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in ptrace PEEKUSER and POKEUSER when accessing floating point registers on powerpc 32-bit platforms. A local user can trigger buffer overflow and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Resource management error

EUVDB-ID: #VU65841

Risk: Low

CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33743

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a malicious network backend to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in eXpress Data Path support implementation in Xen, allowing Linux netfront to use freed SKBs. A malicious network backend can cause denial of service on the guest OS.


Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Resource management error

EUVDB-ID: #VU65844

Risk: Low

CVSSv4.0: 5.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:U/U:Clear]

CVE-ID: CVE-2022-33744

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of foreign mappings performed by rbtree when mapping pages of Arm guests. An unprivileged Arm guest can cause inconsistencies of the rbtree via PV devices, which can lead to denial of service of dom0 and cause crashes or the inability to perform further mappings of other guests' memory pages.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Type Confusion

EUVDB-ID: #VU65360

Risk: Low

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2022-34918

CWE-ID: CWE-843 - Type confusion

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists in the Linux kernel’s Netfilter subsystem in the way a user provides incorrect input of the NFT_DATA_VERDICT type. A local user can pass specially crafted data to the application, trigger a type confusion error and escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

48) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU66808

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-36123

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to Linux kernel lacks a certain clear operation for the block starting symbol (.bss). A local user on the Xen PV guest OS can perform a denial of service attack or escalate privileges on the guest OS.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Resource management error

EUVDB-ID: #VU66550

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-36879

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the xfrm_expand_policies() function in net/xfrm/xfrm_policy.c. A local user can cause the refcount to be dropped twice and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) Input validation error

EUVDB-ID: #VU66476

Risk: Medium

CVSSv4.0: 7.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2022-36946

CWE-ID: CWE-20 - Improper input validation

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input within the nfqnl_mangle() function in net/netfilter/nfnetlink_queue.c in the Linux kernel when processing IPv6 packets. A remote attacker can send specially crafted packets to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

python3-perf: before 5.10.134-12

perf: before 5.10.134-12

kernel-tools-libs-devel: before 5.10.134-12

kernel-tools-libs: before 5.10.134-12

kernel-tools: before 5.10.134-12

kernel-modules-internal: before 5.10.134-12

kernel-modules-extra: before 5.10.134-12

kernel-modules: before 5.10.134-12

kernel-headers: before 5.10.134-12

kernel-devel: before 5.10.134-12

kernel-debug-modules-extra: before 5.10.134-12

kernel-debug-modules: before 5.10.134-12

kernel-debug-devel: before 5.10.134-12

kernel-debug-core: before 5.10.134-12

kernel-debug: before 5.10.134-12

kernel-core: before 5.10.134-12

kernel: before 5.10.134-12

bpftool: before 5.10.134-12

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2022:0678


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.



###SIDEBAR###