CVE-2022-2602: Use After Free
First published: Mon Jan 08 2024(Updated: )
io_uring UAF, Unix SCM garbage collection
Credit: security@ubuntu.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.15-1 | |
| Linux Kernel | <=6.0.19 | |
| Ubuntu | =18.04 | |
| Ubuntu | =20.04 | |
| Ubuntu | =22.04 | |
| Ubuntu | =22.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/176533/Linux-Broken-Unix-GC-Interaction-Use-After-Free.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2602
- https://ubuntu.com/security/notices/USN-5691-1
- https://ubuntu.com/security/notices/USN-5692-1
- https://ubuntu.com/security/notices/USN-5693-1
- https://ubuntu.com/security/notices/USN-5700-1
- https://ubuntu.com/security/notices/USN-5752-1
- https://launchpad.net/bugs/cve/CVE-2022-2602
- https://nvd.nist.gov/vuln/detail/CVE-2022-2602
- https://security-tracker.debian.org/tracker/CVE-2022-2602
- https://ubuntu.com/security/CVE-2022-2602
- https://git.kernel.org/linus/0091bfc81741b8d3aeb3b7ab8636f911b2de6e80
- https://www.openwall.com/lists/oss-security/2022/10/18/4
- https://blog.hacktivesecurity.com/index.php/2022/12/21/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/
Frequently Asked Questions
What is the severity of CVE-2022-2602?
CVE-2022-2602 is considered to have high severity due to the potential for exploitation through use-after-free vulnerabilities.
How do I fix CVE-2022-2602?
To mitigate CVE-2022-2602, it is recommended to upgrade to an unaffected version of the Linux kernel or apply the necessary patches provided by your distribution.
Which distributions are affected by CVE-2022-2602?
CVE-2022-2602 impacts multiple distributions including Debian and various versions of Ubuntu, specifically kernel versions up to 6.0.19.
Are there known exploits for CVE-2022-2602?
Yes, there are potential exploits for CVE-2022-2602 that can lead to privilege escalation and remote code execution.
What systems should I prioritize for patching against CVE-2022-2602?
Systems running outdated kernels such as those mentioned in the affected software list should be prioritized for patching against CVE-2022-2602.
- agent/type
- agent/remedy
- agent/severity
- agent/weakness
- collector/launchpad-cve
- source/Launchpad
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/first-publish-date
- agent/trending
- agent/source
- agent/author
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-cve
- package-manager/debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/6.0.19
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/18.04
- version/ubuntu/20.04
- version/ubuntu/22.04
- version/ubuntu/22.10