1. Home
  2. Vulnerabilities
  3. CVE-2022-1729

CVE-2022-1729

CVSS v3.1 7 (High)
70% Progress
EPSS 0.04 % (17th)
0.04% Progress
Affected Products 2
Advisories 59
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.

Weaknesses
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-366
Race Condition within a Thread
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2022-09-01 21:15:09
(2 years ago)
Updated Date
2023-08-04 17:41:03
(13 months ago)

Affected Products

Linux

Netapp

Configuration #1

    CPE23 From Up To
  Linux Kernel from 3.2.85 version and prior 3.3 version cpe:2.3:o:linux:linux_kernel >= 3.2.85 < 3.3
  Linux Kernel from 3.16.40 version and prior 3.17 version cpe:2.3:o:linux:linux_kernel >= 3.16.40 < 3.17
  Linux Kernel from 3.18.54 version and prior 3.19 version cpe:2.3:o:linux:linux_kernel >= 3.18.54 < 3.19
  Linux Kernel from 4.0.0 version and prior 4.9.316 version cpe:2.3:o:linux:linux_kernel >= 4.0.0 < 4.9.316
  Linux Kernel from 4.10 version and prior 4.14.281 version cpe:2.3:o:linux:linux_kernel >= 4.10 < 4.14.281
  Linux Kernel from 4.15 version and prior 4.19.245 version cpe:2.3:o:linux:linux_kernel >= 4.15 < 4.19.245
  Linux Kernel from 4.20 version and prior 5.4.196 version cpe:2.3:o:linux:linux_kernel >= 4.20 < 5.4.196
  Linux Kernel from 5.5.0 version and prior 5.10.118 version cpe:2.3:o:linux:linux_kernel >= 5.5.0 < 5.10.118
  Linux Kernel from 5.11 version and prior 5.15.42 version cpe:2.3:o:linux:linux_kernel >= 5.11 < 5.15.42
  Linux Kernel from 5.16 version and prior 5.17.10 version cpe:2.3:o:linux:linux_kernel >= 5.16 < 5.17.10

Configuration #2

    CPE23 From Up To
  Netapp Hci Baseboard Management Controller H300s cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s
  Netapp Hci Baseboard Management Controller H410s cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s
  Netapp Hci Baseboard Management Controller H500s cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s
  Netapp Hci Baseboard Management Controller H700s cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s