GSD-2022-1000975

See a problem?
Please try reporting it to the source first.

Source

https://data.gsd.id/GSD-2022-1000975

Import Source

https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1000xxx/GSD-2022-1000975.json

JSON Data

https://api.osv.dev/v1/vulns/GSD-2022-1000975

Published

2022-04-24T20:36:14.155938Z

Modified

2023-02-22T07:31:48.166449Z

Summary

io_uring: abort file assignment prior to assigning creds

Details

io_uring: abort file assignment prior to assigning creds

This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.4 by commit 262960775e0d2cdf97a3e33993e95e13175df4bb, it was introduced in version v5.17.3 by commit 2c443b22756cf75dc594d4d32bf64505bf4ce84b. For more details please see the references link.

References

Affected packages

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/
Events: Introduced

2c443b22756cf75dc594d4d32bf64505bf4ce84b

Limit

262960775e0d2cdf97a3e33993e95e13175df4bb

Affected versions

v5.*

v5.17.3