CVE-2022-1678

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

References

Affected packages

Git / github.com/torvalds/linux

Affected ranges

Type

GIT

Repo

https://github.com/torvalds/linux

Events

Introduced

94710cac0ef4ee177a63b5227664b38c95bbf703

Last affected

84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d

Fixed

0a70f118475e037732557796accd0878a00fc25a

Database specific

{
    "versions": [
        {
            "introduced": "4.18"
        },
        {
            "last_affected": "4.19"
        }
    ]
}

Affected versions

v4.*

v4.18

v4.19

v4.19-rc1

v4.19-rc2

v4.19-rc3

v4.19-rc4

v4.19-rc5

v4.19-rc6

v4.19-rc7

v4.19-rc8

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1678.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "11.0"
            },
            {
                "last_affected": "11.70.2"
            }
        ]
    }
]

vanir_signatures

[
    {
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/tcp_output.c",
            "function": "tcp_internal_pacing"
        },
        "source": "https://github.com/torvalds/linux/commit/0a70f118475e037732557796accd0878a00fc25a",
        "deprecated": false,
        "digest": {
            "function_hash": "305071588974209152896318375609835825469",
            "length": 403.0
        },
        "id": "CVE-2022-1678-0df982cb",
        "signature_type": "Function"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/tcp_output.c"
        },
        "source": "https://github.com/torvalds/linux/commit/0a70f118475e037732557796accd0878a00fc25a",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "112252161494150687482036146125572582170",
                "235936696653281744945860350624661839109",
                "126822610119063424830083512208756404832",
                "290467829325330578600547636386127407096",
                "275756602238725442082541821754179757415",
                "127729833077943498858366290054601550388",
                "12254256495553939721132668985928608417",
                "97119719173496647318399972531451910764",
                "157601116724117759374458089288687763630",
                "10744231015606377960633981584297661864",
                "320241906312485608331540539935456087938",
                "327840302940249777065427093547961645362",
                "277086011243935152731600802316647074050",
                "151173560891552895257868094899955351763",
                "295717241335571189801146611213839538739",
                "258662546911841284106043561359826880851",
                "95805330754213299442534748805951690057",
                "180394038107596606653723083168103403469",
                "135098824718966649812470483590846963308",
                "209618383292723648883906424264739600836",
                "141370366897576561613486736914788469264",
                "62260680681670653339834781117750876622",
                "44122123852268249258525801986748381301"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2022-1678-16f06743",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/tcp_output.c",
            "function": "tcp_mtu_probe"
        },
        "source": "https://github.com/torvalds/linux/commit/0a70f118475e037732557796accd0878a00fc25a",
        "deprecated": false,
        "digest": {
            "function_hash": "237927386148102752937457509424305737820",
            "length": 2751.0
        },
        "id": "CVE-2022-1678-ba78d18a",
        "signature_type": "Function"
    }
]