What is the severity of CVE-2022-4744?

CVE-2022-4744 is categorized as a high severity vulnerability due to its potential to allow privilege escalation.

How do I fix CVE-2022-4744?

To fix CVE-2022-4744, you should update your Linux kernel to one of the remedied versions listed by Red Hat, such as 0:5.14.0-162.22.2.el9_1 or higher.

Who is affected by CVE-2022-4744?

CVE-2022-4744 affects Linux kernels and certain IBM Security Verify Governance versions, making users of these systems potentially vulnerable.

What kind of attack can CVE-2022-4744 enable?

CVE-2022-4744 can enable a local user to crash the system or escalate their privileges.

Is CVE-2022-4744 specific to certain Linux distributions?

Yes, CVE-2022-4744 primarily affects Red Hat-based distributions, including those using the kernel and kernel-rt packages.

Vulnerability/
CVE-2022-4744

high

7.8

CWE

415 460 824

26/12/2022

20/3/2023

30/3/2023

14/2/2025

CVE-2022-4744: Double Free

First published: Mon Dec 26 2022(Updated: )

A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the register_netdevice function fails (NETDEV_REGISTER notifier). This flaw allows a local user to crash or potentially escalate their privileges on the system.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/kernel	<0:5.14.0-162.22.2.el9_1	0:5.14.0-162.22.2.el9_1
redhat/kernel-rt	<0:5.14.0-162.22.2.rt21.186.el9_1	0:5.14.0-162.22.2.rt21.186.el9_1
redhat/kernel	<0:5.14.0-70.50.2.el9_0	0:5.14.0-70.50.2.el9_0
redhat/kernel-rt	<0:5.14.0-70.50.2.rt21.122.el9_0	0:5.14.0-70.50.2.rt21.122.el9_0
redhat/kernel	<5.16	5.16
Linux Kernel	>=5.5<5.10.136
Linux Kernel	>=5.11<5.15.12
IBM Security Verify Governance - Identity Manager	<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager	<=ISVG 10.0.2

Remedy

To mitigate this issue, prevent the tun module from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is the severity of CVE-2022-4744?
CVE-2022-4744 is categorized as a high severity vulnerability due to its potential to allow privilege escalation.
How do I fix CVE-2022-4744?
To fix CVE-2022-4744, you should update your Linux kernel to one of the remedied versions listed by Red Hat, such as 0:5.14.0-162.22.2.el9_1 or higher.
Who is affected by CVE-2022-4744?
CVE-2022-4744 affects Linux kernels and certain IBM Security Verify Governance versions, making users of these systems potentially vulnerable.
What kind of attack can CVE-2022-4744 enable?
CVE-2022-4744 can enable a local user to crash the system or escalate their privileges.
Is CVE-2022-4744 specific to certain Linux distributions?
Yes, CVE-2022-4744 primarily affects Red Hat-based distributions, including those using the kernel and kernel-rt packages.

collector/redhat-cve
agent/type
agent/first-publish-date
agent/author
agent/remedy
agent/weakness
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2022-4744
agent/software-canonical-lookup
agent/severity
agent/description
agent/trending
agent/references
collector/nvd-index
agent/software-canonical-lookup-request
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
agent/event
collector/nvd-api
source/NVD
collector/ibm-support
source/IBM
agent/softwarecombine
package-manager/redhat
vendor/linux
canonical/linux kernel
version/linux kernel/5.5
version/linux kernel/5.11
vendor/ibm
canonical/ibm security verify governance - identity manager
version/ibm security verify governance - identity manager/isvg 10.0.2
canonical/ibm security verify governance, identity manager
version/ibm security verify governance, identity manager/isvg 10.0.2