CVE-2022-32250
- Source
- https://cve.org/CVERecord?id=CVE-2022-32250
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32250.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-32250
- Downstream
- Related
- Published
- 2022-06-02T21:15:07.973Z
- Modified
- 2026-03-11T00:15:48.051257Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
net/netfilter/nftablesapi.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFTSTATEFULEXPR check leads to a use-after-free.
- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UIZTJOJCVVEJVOQSCHE6IJQKMPISHQ5L/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO6Y3TC4WUUNKRP7OQA26OVTZTPCS6F2/
- http://www.openwall.com/lists/oss-security/2022/06/20/1
- https://www.debian.org/security/2022/dsa-5173
- http://www.openwall.com/lists/oss-security/2022/07/03/5
- http://www.openwall.com/lists/oss-security/2022/07/03/6
- http://www.openwall.com/lists/oss-security/2022/09/02/9
- https://security.netapp.com/advisory/ntap-20220715-0005/
- https://www.debian.org/security/2022/dsa-5161
- https://lists.debian.org/debian-lts-announce/2022/07/msg00000.html
- https://bugzilla.redhat.com/show_bug.cgi?id=2092427
- http://www.openwall.com/lists/oss-security/2022/06/03/1
- https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/net/netfilter?id=520778042ccca019f3ffa136dd0ca565c486cedd
- http://www.openwall.com/lists/oss-security/2022/06/04/1
- http://www.openwall.com/lists/oss-security/2022/08/25/1
- https://www.openwall.com/lists/oss-security/2022/05/31/1
- https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/
- https://github.com/theori-io/CVE-2022-32250-exploit
Affected packages
Git /
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32250.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "4.1"
},
{
"fixed": "4.9.318"
}
]
},
{
"events": [
{
"introduced": "4.10"
},
{
"fixed": "4.14.283"
}
]
},
{
"events": [
{
"introduced": "4.15"
},
{
"fixed": "4.19.247"
}
]
},
{
"events": [
{
"introduced": "4.20"
},
{
"fixed": "5.4.198"
}
]
},
{
"events": [
{
"introduced": "5.5"
},
{
"fixed": "5.10.120"
}
]
},
{
"events": [
{
"introduced": "5.11"
},
{
"fixed": "5.15.45"
}
]
},
{
"events": [
{
"introduced": "5.16"
},
{
"fixed": "5.17.13"
}
]
},
{
"events": [
{
"introduced": "5.18"
},
{
"fixed": "5.18.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "35"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "36"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "10.0"
}
]
}
]