CVE-2022-1012

CVSS v3.1 8.2 (High)

EPSS 0.12 % (47^th)

Affected Products 1

Advisories 47

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.

Weaknesses

CWE-401: Missing Release of Memory after Effective Lifetime

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2022-08-05 16:15:11
(2 years ago)
Updated Date: 2023-11-07 03:41:42
(10 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	Up To
Linux Kernel prior 5.18 version	cpe:2.3:o:linux:linux_kernel	< 5.18
Linux Kernel 5.18	cpe:2.3:o:linux:linux_kernel:5.18:-
Linux Kernel 5.18 Rc1	cpe:2.3:o:linux:linux_kernel:5.18:rc1
Linux Kernel 5.18 Rc2	cpe:2.3:o:linux:linux_kernel:5.18:rc2
Linux Kernel 5.18 Rc3	cpe:2.3:o:linux:linux_kernel:5.18:rc3
Linux Kernel 5.18 Rc4	cpe:2.3:o:linux:linux_kernel:5.18:rc4
Linux Kernel 5.18 Rc5	cpe:2.3:o:linux:linux_kernel:5.18:rc5