CVE-2022-1974

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-1974

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1974.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-1974

Downstream

DEBIAN-CVE-2022-1974

DLA-3065-1

DSA-5161-1

DSA-5173-1

OESA-2022-1714

SUSE-SU-2022:2077-1

SUSE-SU-2022:2080-1

SUSE-SU-2022:2082-1

SUSE-SU-2022:2103-1

SUSE-SU-2022:2104-1

SUSE-SU-2022:2111-1

SUSE-SU-2022:2116-1

SUSE-SU-2022:2172-1

SUSE-SU-2022:2173-1

SUSE-SU-2022:2177-1

SUSE-SU-2022:2393-1

SUSE-SU-2022:2520-1

SUSE-SU-2022:2615-1

SUSE-SU-2022:2629-1

UBUNTU-CVE-2022-1974

USN-5518-1

USN-5560-1

USN-5560-2

USN-5562-1

USN-5564-1

USN-5582-1

USN-6001-1

USN-6013-1

USN-6014-1

openSUSE-SU-2022:2173-1

openSUSE-SU-2022:2177-1

Related

Published

2022-08-31T16:15:10.007Z

Modified

2026-03-14T01:44:11.643962Z

Severity

4.1 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAPNETADMIN privilege to leak kernel information.

References

https://github.com/torvalds/linux/commit/da5c0f119203ad9728920456a0f52a6d850c01cd

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1974.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "5.18-rc6"
            }
        ]
    }
]