CVE-2022-4128

CVSS v3.1 5.5 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 4

A NULL pointer dereference issue was discovered in the Linux kernel in the MPTCP protocol when traversing the subflow list at disconnect time. A local user could use this flaw to potentially crash the system causing a denial of service.

Weaknesses

CWE-476: NULL Pointer Dereference

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2022-11-28 22:15:11
(21 months ago)
Updated Date: 2023-11-07 03:57:00
(10 months ago)

Affected Products

Linux

Mptcp Protocol

Configuration #1

		CPE23	From	Up To
	Linux Mptcp Protocol prior 5.19 version	cpe:2.3:o:linux:mptcp_protocol		< 5.19