CVE-2022-0185
HIGH CISA KEV
Published Feb 11, 20224y ago · Modified Jun 17, 20262w ago
8.4 CVSS 3.1
Published Feb 11, 2022 4y ago
Last Modified Jun 17, 2026 2w ago
KEV Listed Aug 21, 2024 1y ago
KEV Due Sep 11, 2024 662d overdue
Description
A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
CISA Known Exploited Overdue 662d
- Added
- Aug 21, 2024
- Due
- Sep 11, 2024
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available
Weaknesses 2
CWE-190 Integer Overflow or Wraparound Numeric Error
CWE-191
Affected Products 20
| Vendor | Product | Version | Range |
|---|---|---|---|
| linux | linux_kernel | * | ≥5.1 – <5.4.173 |
| linux | linux_kernel | * | ≥5.5 – <5.10.93 |
| linux | linux_kernel | * | ≥5.11 – <5.15.16 |
| linux | linux_kernel | * | ≥5.16 – <5.16.2 |
| netapp | h410c_firmware | * | any |
| netapp | h410c | * | any |
| netapp | h300s_firmware | * | any |
| netapp | h300s | * | any |
| netapp | h500s_firmware | * | any |
| netapp | h500s | * | any |
| netapp | h700s_firmware | * | any |
| netapp | h700s | * | any |
| netapp | h300e_firmware | * | any |
| netapp | h300e | * | any |
| netapp | h500e_firmware | * | any |
| netapp | h500e | * | any |
| netapp | h700e_firmware | * | any |
| netapp | h700e | * | any |
| netapp | h410s_firmware | * | any |
| netapp | h410s | * | any |
References 6
- git.kernel.org https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=722d94847de2
- github.com https://github.com/Crusaders-of-Rust/CVE-2022-0185
- security.netapp.com https://security.netapp.com/advisory/ntap-20220225-0003/
- cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-0185
- openwall.com https://www.openwall.com/lists/oss-security/2022/01/18/7
- willsroot.io https://www.willsroot.io/2022/01/cve-2022-0185.html
Remediation
- git.kernel.org https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=722d94847de2
- openwall.com https://www.openwall.com/lists/oss-security/2022/01/18/7