CVE-2022-0185

HIGH CISA KEV
Published Feb 11, 20224y ago · Modified Jun 17, 20262w ago
8.4 CVSS 3.1
High
Find Similar
Published Feb 11, 2022 4y ago
Last Modified Jun 17, 2026 2w ago
KEV Listed Aug 21, 2024 1y ago
KEV Due Sep 11, 2024 662d overdue

Description

A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system.

CVSS Details

Base Score
8.4
Exploitability
2.5
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

CISA Known Exploited Overdue 662d
Added
Aug 21, 2024
Due
Sep 11, 2024

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Weaknesses 2

CWE-190 Integer Overflow or Wraparound Numeric Error
CWE-191

Affected Products 20

VendorProductVersionRange
linuxlinux_kernel*≥5.1  –  <5.4.173
linuxlinux_kernel*≥5.5  –  <5.10.93
linuxlinux_kernel*≥5.11  –  <5.15.16
linuxlinux_kernel*≥5.16  –  <5.16.2
netapph410c_firmware*any
netapph410c*any
netapph300s_firmware*any
netapph300s*any
netapph500s_firmware*any
netapph500s*any
netapph700s_firmware*any
netapph700s*any
netapph300e_firmware*any
netapph300e*any
netapph500e_firmware*any
netapph500e*any
netapph700e_firmware*any
netapph700e*any
netapph410s_firmware*any
netapph410s*any

References 6

  • git.kernel.org https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=722d94847de2
    Mailing ListPatch
  • github.com https://github.com/Crusaders-of-Rust/CVE-2022-0185
    ExploitThird Party Advisory
  • security.netapp.com https://security.netapp.com/advisory/ntap-20220225-0003/
    Third Party Advisory
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-0185
    US Government Resource
  • openwall.com https://www.openwall.com/lists/oss-security/2022/01/18/7
    Mailing ListPatchThird Party Advisory
  • willsroot.io https://www.willsroot.io/2022/01/cve-2022-0185.html
    ExploitThird Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=722d94847de2
    Mailing ListPatch
  • openwall.com https://www.openwall.com/lists/oss-security/2022/01/18/7
    Mailing ListPatchThird Party Advisory