CVE-2022-1973

CVSS v3.1 7.1 (High)

EPSS 0.04 % (5^th)

Affected Products 12

Advisories 10

A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and leads to a kernel information leak problem.

Weaknesses

CWE-416: Use After Free

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2022-08-05 17:15:08
(2 years ago)
Updated Date: 2023-08-04 17:51:55
(13 months ago)

Affected Products

Fedoraproject

Fedora

Linux

Linux Kernel

Netapp

Configuration #1

AND

		CPE23	From	Up To
OR
	Linux Kernel from 5.15 version and prior 5.15.46 version	cpe:2.3:o:linux:linux_kernel	>= 5.15	< 5.15.46
OR
	Running on/with
	Linux Kernel from 5.16 version and prior 5.17.14 version	cpe:2.3:o:linux:linux_kernel	>= 5.16	< 5.17.14
OR
	Running on/with
	Linux Kernel from 5.18 version and prior 5.18.3 version	cpe:2.3:o:linux:linux_kernel	>= 5.18	< 5.18.3

Configuration #2

AND

		CPE23
OR
	Fedoraproject Fedora 35	cpe:2.3:o:fedoraproject:fedora:35
OR
	Running on/with
	Fedoraproject Fedora 36	cpe:2.3:o:fedoraproject:fedora:36

Configuration #3

AND

		CPE23
OR
	Netapp H300s Firmware	cpe:2.3:o:netapp:h300s_firmware:-
OR
	Running on/with
	Netapp H300s	cpe:2.3:h:netapp:h300s:-

Configuration #4

AND

		CPE23
OR
	Netapp H500s Firmware	cpe:2.3:o:netapp:h500s_firmware:-
OR
	Running on/with
	Netapp H500s	cpe:2.3:h:netapp:h500s:-

Configuration #5

AND

		CPE23
OR
	Netapp H700s Firmware	cpe:2.3:o:netapp:h700s_firmware:-
OR
	Running on/with
	Netapp H700s	cpe:2.3:h:netapp:h700s:-

Configuration #6

AND

		CPE23
OR
	Netapp H410s Firmware	cpe:2.3:o:netapp:h410s_firmware:-
OR
	Running on/with
	Netapp H410s	cpe:2.3:h:netapp:h410s:-

Configuration #7

AND

		CPE23
OR
	Netapp H410c Firmware	cpe:2.3:o:netapp:h410c_firmware:-
OR
	Running on/with
	Netapp H410c	cpe:2.3:h:netapp:h410c:-