2150863 – (CVE-2022-20154) CVE-2022-20154 kernel: possible use after free in lock_sock_nested of sock.c for the SCTP protocol

Bug 2150863 (CVE-2022-20154) - CVE-2022-20154 kernel: possible use after free in lock_sock_nested of sock.c for the SCTP protocol

Summary: CVE-2022-20154 kernel: possible use after free in lock_sock_nested of sock.c ...

Keywords:
Status:	NEW
Alias:	CVE-2022-20154
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Nobody
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2043822 2043823 2150864 2150872 2150873 2150874 2150875
Blocks:	2099268
TreeView+	depends on / blocked

Reported:	2022-12-05 12:59 UTC by Alex
Modified:	2024-10-12 08:27 UTC (History)
CC List:	48 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Alex 2022-12-05 12:59:18 UTC

In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed.

Reference:
https://github.com/torvalds/linux/commit/5ec7d18d1813a5bead0b495045606c93873aecbb

Comment 1 Alex 2022-12-05 12:59:44 UTC

Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2150864]

Comment 4 Justin M. Forbes 2022-12-08 15:33:56 UTC

This was fixed for Fedora with the 5.15.13 stable kernel updates.

Note You need to log in before you can comment on or make changes to this bug.

acaringi
adscvr
airlied
alciregi
bhu
chwhite
crwood
ddepaula
debarbos
dfreiber
dvlasenk
ezulian
hdegoede
hkrzesin
hpa
jarod
jarodwilson
jburrell
jfaracco
jferlan
jforbes
jglisse
jlelli
joe.lawrence
josef
jshortt
jstancek
jwboyer
jwyatt
kcarcia
kernel-maint
kernel-mgr
lgoncalv
linville
lzampier
masami256
mchehab
nmurray
ptalbert
qzhao
rogbas
rvrbovsk
scweaver
steved
tyberry
vkumar
walters
williams