CVE-2022-0500: Buffer Overflow
First published: Mon Jan 24 2022(Updated: )
A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTF. This flaw allows a local user to crash or escalate their privileges on the system.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/Linux kernel | <5.17 | 5.17 |
| Linux Kernel | >=5.10<5.15.37 | |
| Linux Kernel | >=5.16<5.16.11 | |
| Red Hat Fedora | =34 | |
| Red Hat Fedora | =35 | |
| All of | ||
| NetApp H300E | ||
| NetApp H300E Firmware | ||
| All of | ||
| NetApp H300S Firmware | ||
| NetApp H300S Firmware | ||
| All of | ||
| NetApp H410C | ||
| NetApp H410C Firmware | ||
| All of | ||
| NetApp H410S | ||
| NetApp H410S Firmware | ||
| All of | ||
| NetApp H500S Firmware | ||
| NetApp H500e Firmware | ||
| All of | ||
| NetApp H500e Firmware | ||
| NetApp H500e Firmware | ||
| All of | ||
| NetApp H700E | ||
| NetApp H700E | ||
| All of | ||
| NetApp H700S | ||
| NetApp H700S | ||
| NetApp H300E | ||
| NetApp H300E Firmware | ||
| NetApp H300S Firmware | ||
| NetApp H300S Firmware | ||
| NetApp H410C | ||
| NetApp H410C Firmware | ||
| NetApp H410S | ||
| NetApp H410S Firmware | ||
| NetApp H500S Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H700E | ||
| NetApp H700E | ||
| NetApp H700S | ||
| NetApp H700S | ||
| debian/linux | <=5.10.223-1<=5.10.234-1 | 6.1.129-1 6.1.128-1 6.12.20-1 6.12.21-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=2044578
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=20b2aff4bc15bda809f994761d5719827d66c0b4
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=216e3cd2f28dbbf1fe86848e0e29e6693b9f0a20
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=34d3a78c681e8e7844b43d1a2f4671a04249c821
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3c4807322660d4290ac9062c034aed6b87243861
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=48946bd6a5d695c50b34546864b79c1f910a33c1
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c25b2ae136039ffa820c26138ed4a5e5f3ab3841
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cf9f2f8d62eca810afbd1ee6cc0800202b000e57
- https://security.netapp.com/advisory/ntap-20220519-0001/
- https://launchpad.net/bugs/cve/CVE-2022-0500
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2040599
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2056248
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2044578#c10
- https://access.redhat.com/security/cve/CVE-2022-0500
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2044578#c11
- https://access.redhat.com/security/cve/CVE-2022-23222
- https://lore.kernel.org/stable/20220216225209.2196865-1-haoluo@google.com/
- https://access.redhat.com/errata/RHSA-2024:0724
- https://access.redhat.com/errata/RHSA-2024:2950
- https://access.redhat.com/errata/RHSA-2024:3138
- https://access.redhat.com/errata/RHSA-2024:10262
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0500
- https://nvd.nist.gov/vuln/detail/CVE-2022-0500
- https://security-tracker.debian.org/tracker/CVE-2022-0500
- https://ubuntu.com/security/CVE-2022-0500
Frequently Asked Questions
What is the severity of CVE-2022-0500?
CVE-2022-0500 is considered a high-severity vulnerability due to its potential to allow local users to escalate privileges or crash the system.
How do I fix CVE-2022-0500?
To fix CVE-2022-0500, update your Linux kernel to version 5.17 or later.
Which versions of the Linux kernel are affected by CVE-2022-0500?
CVE-2022-0500 affects Linux kernel versions prior to 5.17, as well as versions from 5.10 up to 5.15.37 and from 5.16 up to 5.16.11.
Can CVE-2022-0500 be exploited remotely?
No, CVE-2022-0500 requires local access to the system to exploit the vulnerability.
What impact does CVE-2022-0500 have on system integrity?
CVE-2022-0500 can compromise system integrity by allowing a local user to escalate their privileges and potentially alter critical system files.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-0500
- agent/software-canonical-lookup
- collector/usn-cve
- source/Ubuntu
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/description
- agent/trending
- agent/source
- agent/author
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- collector/security-tracker-debian
- source/Debian
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.10
- version/linux kernel/5.16
- vendor/fedoraproject
- canonical/red hat fedora
- version/red hat fedora/34
- version/red hat fedora/35
- vendor/netapp
- canonical/netapp h300e
- canonical/netapp h300e firmware
- canonical/netapp h300s firmware
- canonical/netapp h410c
- canonical/netapp h410c firmware
- canonical/netapp h410s
- canonical/netapp h410s firmware
- canonical/netapp h500s firmware
- canonical/netapp h500e firmware
- canonical/netapp h700e
- canonical/netapp h700s
- package-manager/debian