What is the severity of CVE-2022-2663?

CVE-2022-2663 is considered a high severity vulnerability due to its potential to allow unauthorized access to a system.

How do I fix CVE-2022-2663?

To resolve CVE-2022-2663, update to the latest kernel version provided by your distribution, specifically the patched versions for Red Hat or Debian.

What systems are affected by CVE-2022-2663?

CVE-2022-2663 affects multiple versions of the Linux kernel, particularly those in Red Hat and Debian distributions.

What is the impact of CVE-2022-2663?

The impact of CVE-2022-2663 includes the potential for an attacker to bypass firewall protections and gain unauthorized access to the system.

Is CVE-2022-2663 exploitable remotely?

Yes, CVE-2022-2663 is exploitable remotely, allowing unauthorized users to potentially compromise affected systems.

Vulnerability/
CVE-2022-2663

medium

5.9

CWE

923

30/8/2022

1/9/2022

21/11/2024

CVE-2022-2663

First published: Tue Aug 30 2022(Updated: )

A firewall flaw that can bypass the Linux kernel’s Netfilter functionality was found in how a user handles unencrypted IRC with nf_conntrack_irc configured. This flaw allows a remote user to gain unauthorized access to the system.

Credit: secalert@redhat.com secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/kernel-rt	<0:4.18.0-477.10.1.rt7.274.el8_8	0:4.18.0-477.10.1.rt7.274.el8_8
redhat/kernel	<0:4.18.0-477.10.1.el8_8	0:4.18.0-477.10.1.el8_8
redhat/kernel	<0:5.14.0-284.11.1.el9_2	0:5.14.0-284.11.1.el9_2
redhat/kernel-rt	<0:5.14.0-284.11.1.rt14.296.el9_2	0:5.14.0-284.11.1.rt14.296.el9_2
debian/linux		5.10.223-1 5.10.226-1 6.1.123-1 6.1.119-1 6.12.9-1 6.12.10-1
Linux Kernel
Debian Debian Linux	=10.0
Debian Debian Linux	=11.0

Remedy

To mitigate this issue, prevent the module nf_conntrack_irc from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is the severity of CVE-2022-2663?
CVE-2022-2663 is considered a high severity vulnerability due to its potential to allow unauthorized access to a system.
How do I fix CVE-2022-2663?
To resolve CVE-2022-2663, update to the latest kernel version provided by your distribution, specifically the patched versions for Red Hat or Debian.
What systems are affected by CVE-2022-2663?
CVE-2022-2663 affects multiple versions of the Linux kernel, particularly those in Red Hat and Debian distributions.
What is the impact of CVE-2022-2663?
The impact of CVE-2022-2663 includes the potential for an attacker to bypass firewall protections and gain unauthorized access to the system.
Is CVE-2022-2663 exploitable remotely?
Yes, CVE-2022-2663 is exploitable remotely, allowing unauthorized users to potentially compromise affected systems.

collector/redhat-cve
agent/type
agent/first-publish-date
collector/launchpad-cve
source/Launchpad
agent/author
agent/severity
agent/weakness
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2022-2663
collector/mitre-cve
source/MITRE
collector/usn-cve
source/Ubuntu
agent/last-modified-date
agent/trending
agent/references
agent/remedy
agent/description
agent/event
agent/source
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
agent/softwarecombine
agent/tags
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/redhat
package-manager/debian
vendor/linux
canonical/linux kernel
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
version/debian debian linux/11.0