Vulnerability-Lookup

CVE-2022-1016 (GCVE-0-2022-1016)

Vulnerability from cvelistv5 – Published: 2022-08-29 14:03 – Updated: 2024-08-02 23:47

Summary

A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-824 - - Access of Uninitialized Pointer.

Assigner

redhat

References

4 references

URL	Tags
http://blog.dbouman.nl/2022/04/02/How-The-Tables-…	x_refsource_MISC
https://seclists.org/oss-sec/2022/q1/205	x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=2066614	x_refsource_MISC
https://access.redhat.com/security/cve/CVE-2022-1016	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
n/a	Kernel	Affected: Affects v3.13-rc1 and later, Fixed in v5.18-rc1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:47:42.700Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://seclists.org/oss-sec/2022/q1/205"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066614"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2022-1016"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Kernel",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Affects v3.13-rc1 and later, Fixed in v5.18-rc1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-824",
              "description": "CWE-824 - Access of Uninitialized Pointer.",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-29T14:03:06.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://seclists.org/oss-sec/2022/q1/205"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066614"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2022-1016"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2022-1016",
    "datePublished": "2022-08-29T14:03:06.000Z",
    "dateReserved": "2022-03-17T00:00:00.000Z",
    "dateUpdated": "2024-08-02T23:47:42.700Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2022-1016",
      "date": "2026-06-17",
      "epss": "0.00419",
      "percentile": "0.33359"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.12\", \"matchCriteriaId\": \"A49CD410-EABA-40F1-A803-DC1FADBDA96D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.13\", \"versionEndIncluding\": \"5.17\", \"matchCriteriaId\": \"321F7B08-92E2-438E-A94C-F4E827370AB4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:3.13:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"E0ED04A8-156B-43FA-ACB9-F09E177D1B0A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4CFF558-3C47-480D-A2F0-BABF26042943\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.\"}, {\"lang\": \"es\", \"value\": \"Se ha encontrado un fallo en el kernel de Linux en el archivo net/netfilter/nf_tables_core.c:nft_do_chain, que puede causar un uso de memoria previamente liberada. Este problema necesita manejar \\\"return\\\" con las precondiciones apropiadas, ya que puede conllevar a un problema de filtrado de informaci\\u00f3n del kernel causado por un atacante local no privilegiado\"}]",
      "id": "CVE-2022-1016",
      "lastModified": "2024-11-21T06:39:51.973",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}]}",
      "published": "2022-08-29T15:15:10.143",
      "references": "[{\"url\": \"http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2022-1016\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2066614\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://seclists.org/oss-sec/2022/q1/205\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2022-1016\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2066614\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://seclists.org/oss-sec/2022/q1/205\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Mailing List\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-824\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-909\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-1016\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2022-08-29T15:15:10.143\",\"lastModified\":\"2024-11-21T06:39:51.973\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.\"},{\"lang\":\"es\",\"value\":\"Se ha encontrado un fallo en el kernel de Linux en el archivo net/netfilter/nf_tables_core.c:nft_do_chain, que puede causar un uso de memoria previamente liberada. Este problema necesita manejar \\\"return\\\" con las precondiciones apropiadas, ya que puede conllevar a un problema de filtrado de informaci\u00f3n del kernel causado por un atacante local no privilegiado\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-824\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-909\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.12\",\"matchCriteriaId\":\"A49CD410-EABA-40F1-A803-DC1FADBDA96D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.13\",\"versionEndIncluding\":\"5.17\",\"matchCriteriaId\":\"321F7B08-92E2-438E-A94C-F4E827370AB4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:3.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0ED04A8-156B-43FA-ACB9-F09E177D1B0A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}],\"references\":[{\"url\":\"http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2022-1016\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2066614\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/oss-sec/2022/q1/205\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2022-1016\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2066614\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/oss-sec/2022/q1/205\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]}]}}"
  }
}

WID-SEC-W-2022-0160

Vulnerability from csaf_certbund - Published: 2022-03-28 22:00 - Updated: 2025-04-14 22:00

Summary

Linux Kernel: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff: Ein lokaler Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um seine Privilegien zu erhöhen und vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme: - Linux - UNIX

CVE-2022-1015

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle VM 3 Oracle / VM	`cpe:/a:oracle:vm:3`	3
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Open Source Linux Kernel <=5.12 Open Source / Linux Kernel		<=5.12
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
IBM Spectrum Protect <10.1.14 IBM / Spectrum Protect		<10.1.14

CVE-2022-1016

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Open Source Linux Kernel <=3.13-rc1 Open Source / Linux Kernel		<=3.13-rc1
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle VM 3 Oracle / VM	`cpe:/a:oracle:vm:3`	3
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
IBM Spectrum Protect <10.1.14 IBM / Spectrum Protect		<10.1.14

References

81 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://seclists.org/oss-sec/2022/q1/205	external
https://github.com/pqlx/CVE-2022-1015	external
https://alas.aws.amazon.com/ALAS-2022-1577.html	external
https://alas.aws.amazon.com/AL2/ALAS-2022-1768.html	external
https://linux.oracle.com/errata/ELSA-2022-9266.html	external
https://linux.oracle.com/errata/ELSA-2022-9267.html	external
https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-20…	external
https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2…	external
http://linux.oracle.com/errata/ELSA-2022-9271.html	external
http://linux.oracle.com/errata/ELSA-2022-9270.html	external
https://linux.oracle.com/errata/ELSA-2022-9273.html	external
https://linux.oracle.com/errata/ELSA-2022-9274.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-5381-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-5383-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-042.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
http://linux.oracle.com/errata/ELSA-2022-9313.html	external
http://linux.oracle.com/errata/ELSA-2022-9314.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-5390-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.debian.org/debian-security-announce…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-5390-2	external
https://linux.oracle.com/errata/ELSA-2022-9348.html	external
https://oss.oracle.com/pipermail/oraclevm-errata/…	external
http://linux.oracle.com/errata/ELSA-2022-9365.html	external
http://linux.oracle.com/errata/ELSA-2022-9366.html	external
http://linux.oracle.com/errata/ELSA-2022-9368.html	external
http://linux.oracle.com/errata/ELSA-2022-9367.html	external
https://ubuntu.com/security/notices/USN-5415-1	external
https://ubuntu.com/security/notices/USN-5466-1	external
https://alas.aws.amazon.com/AL2/ALASKERNEL-5.15-2…	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-083.html	external
https://linux.oracle.com/errata/ELSA-2022-9533.html	external
https://lists.debian.org/debian-lts-announce/2022…	external
https://linux.oracle.com/errata/ELSA-2022-9534.html	external
https://lists.debian.org/debian-security-announce…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2022:7444	external
https://access.redhat.com/errata/RHSA-2022:7683	external
https://access.redhat.com/errata/RHSA-2022:8267	external
https://access.redhat.com/errata/RHSA-2022:7933	external
http://linux.oracle.com/errata/ELSA-2022-9999.html	external
https://ubuntu.com/security/notices/LSN-0090-1	external
https://access.redhat.com/errata/RHSA-2022:8781	external
https://www.ibm.com/support/pages/node/6965816	external
https://ubuntu.com/security/notices/USN-6001-1	external
https://alas.aws.amazon.com/AL2/ALASKERNEL-5.15-2…	external
https://access.redhat.com/errata/RHSA-2023:4138	external
https://access.redhat.com/errata/RHSA-2023:4137	external
https://linux.oracle.com/errata/ELSA-2023-12759.html	external
https://oss.oracle.com/pipermail/oraclevm-errata/…	external
https://access.redhat.com/errata/RHSA-2024:0412	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um seine Privilegien zu erh\u00f6hen und vertrauliche Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-0160 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0160.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-0160 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0160"
      },
      {
        "category": "external",
        "summary": "Seclists.org Security Advisory vom 2022-03-28",
        "url": "https://seclists.org/oss-sec/2022/q1/205"
      },
      {
        "category": "external",
        "summary": "Poc auf GitHub  vom 2022-04-06",
        "url": "https://github.com/pqlx/CVE-2022-1015"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-1577 vom 2022-04-07",
        "url": "https://alas.aws.amazon.com/ALAS-2022-1577.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-1768 vom 2022-04-07",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1768.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9266 vom 2022-04-07",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9266.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9267 vom 2022-04-07",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9267.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.4-2022-024 vom 2022-04-08",
        "url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-2022-024.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.10-2022-012 vom 2022-04-08",
        "url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2022-012.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9271 vom 2022-04-08",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9271.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9270 vom 2022-04-08",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9270.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9273 vom 2022-04-12",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9273.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9274 vom 2022-04-12",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9274.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1163-1 vom 2022-04-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010687.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1183-1 vom 2022-04-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010701.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1196-1 vom 2022-04-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010723.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1197-1 vom 2022-04-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010731.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1267-1 vom 2022-04-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010755.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1256-1 vom 2022-04-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010751.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1266-1 vom 2022-04-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010754.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1257-1 vom 2022-04-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010746.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5381-1 vom 2022-04-21",
        "url": "https://ubuntu.com/security/notices/USN-5381-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1283-1 vom 2022-04-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010777.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5383-1 vom 2022-04-21",
        "url": "https://ubuntu.com/security/notices/USN-5383-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1270-1 vom 2022-04-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010768.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-042 vom 2022-04-22",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-042.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1318-1 vom 2022-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010805.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1326-1 vom 2022-04-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010817.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1320-1 vom 2022-04-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010815.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1322-1 vom 2022-04-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010816.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1369-1 vom 2022-04-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010820.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1335-1 vom 2022-04-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010825.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9313 vom 2022-04-26",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9313.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9314 vom 2022-04-26",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9314.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1329-1 vom 2022-04-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010824.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1407-1 vom 2022-04-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010837.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5390-1 vom 2022-04-26",
        "url": "https://ubuntu.com/security/notices/USN-5390-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1402-1 vom 2022-04-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010835.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1440-1 vom 2022-04-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010856.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1453-1 vom 2022-04-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010859.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5127 vom 2022-05-02",
        "url": "https://lists.debian.org/debian-security-announce/2022/msg00095.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1486-1 vom 2022-05-03",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-May/010913.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5390-2 vom 2022-05-03",
        "url": "https://ubuntu.com/security/notices/USN-5390-2"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9348 vom 2022-05-03",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9348.html"
      },
      {
        "category": "external",
        "summary": "ORACLE OVMSA-2022-0014 vom 2022-05-04",
        "url": "https://oss.oracle.com/pipermail/oraclevm-errata/2022-May/001052.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9365 vom 2022-05-10",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9365.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9366 vom 2022-05-10",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9366.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9368 vom 2022-05-10",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9368.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9367 vom 2022-05-10",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9367.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5415-1 vom 2022-05-12",
        "url": "https://ubuntu.com/security/notices/USN-5415-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5466-1 vom 2022-06-08",
        "url": "https://ubuntu.com/security/notices/USN-5466-1"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASKERNEL-5.15-2022-001 vom 2022-06-10",
        "url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.15-2022-001.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2022-2022-083 vom 2022-06-13",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-083.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9533 vom 2022-07-01",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9533.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3065 vom 2022-07-01",
        "url": "https://lists.debian.org/debian-lts-announce/2022/07/msg00000.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9534 vom 2022-07-01",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9534.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5173 vom 2022-07-03",
        "url": "https://lists.debian.org/debian-security-announce/2022/msg00141.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2268-1 vom 2022-07-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011401.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2520-1 vom 2022-07-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011616.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2615-1 vom 2022-08-01",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-August/011728.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7444 vom 2022-11-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:7444"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7683 vom 2022-11-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:7683"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8267 vom 2022-11-15",
        "url": "https://access.redhat.com/errata/RHSA-2022:8267"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7933 vom 2022-11-15",
        "url": "https://access.redhat.com/errata/RHSA-2022:7933"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9999 vom 2022-11-16",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9999.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice LSN-0090-1 vom 2022-11-16",
        "url": "https://ubuntu.com/security/notices/LSN-0090-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8781 vom 2022-12-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:8781"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6965816 vom 2023-03-24",
        "url": "https://www.ibm.com/support/pages/node/6965816"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6001-1 vom 2023-04-06",
        "url": "https://ubuntu.com/security/notices/USN-6001-1"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASKERNEL-5.15-2023-023 vom 2023-07-13",
        "url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.15-2023-023.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4138 vom 2023-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:4138"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4137 vom 2023-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:4137"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-12759 vom 2023-09-01",
        "url": "https://linux.oracle.com/errata/ELSA-2023-12759.html"
      },
      {
        "category": "external",
        "summary": "ORACLE OVMSA-2023-0020 vom 2023-09-08",
        "url": "https://oss.oracle.com/pipermail/oraclevm-errata/2023-September/001085.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:0412 vom 2024-01-25",
        "url": "https://access.redhat.com/errata/RHSA-2024:0412"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1176-1 vom 2025-04-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020671.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1183-1 vom 2025-04-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020678.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1194-1 vom 2025-04-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020681.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1195-1 vom 2025-04-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020680.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1241-1 vom 2025-04-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020694.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-04-14T22:00:00.000+00:00",
      "generator": {
        "date": "2025-04-15T11:13:44.598+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2022-0160",
      "initial_release_date": "2022-03-28T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-03-28T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-04-06T22:00:00.000+00:00",
          "number": "2",
          "summary": "Exploit aufgenommen"
        },
        {
          "date": "2022-04-07T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Oracle Linux und Amazon aufgenommen"
        },
        {
          "date": "2022-04-10T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-04-11T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-04-12T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-04-13T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-04-18T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-04-19T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-04-20T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2022-04-24T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Amazon und SUSE aufgenommen"
        },
        {
          "date": "2022-04-25T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE und Oracle Linux aufgenommen"
        },
        {
          "date": "2022-04-26T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2022-04-27T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-04-28T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-05-02T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-05-03T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von SUSE, Ubuntu und Oracle Linux aufgenommen"
        },
        {
          "date": "2022-05-04T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von ORACLE aufgenommen"
        },
        {
          "date": "2022-05-10T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-05-11T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-06-07T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-06-09T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-06-13T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-07-03T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Oracle Linux und Debian aufgenommen"
        },
        {
          "date": "2022-07-05T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-07-21T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-08-01T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-08T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-11-15T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-11-16T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Oracle Linux und Ubuntu aufgenommen"
        },
        {
          "date": "2022-12-07T23:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-03-23T23:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-04-05T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-07-13T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-07-17T22:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-09-03T22:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-09-07T22:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von ORACLE aufgenommen"
        },
        {
          "date": "2024-01-25T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-04-08T22:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-04-09T22:00:00.000+00:00",
          "number": "40",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-04-10T22:00:00.000+00:00",
          "number": "41",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-04-14T22:00:00.000+00:00",
          "number": "42",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "42"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.1.14",
                "product": {
                  "name": "IBM Spectrum Protect \u003c10.1.14",
                  "product_id": "T026783"
                }
              },
              {
                "category": "product_version",
                "name": "10.1.14",
                "product": {
                  "name": "IBM Spectrum Protect 10.1.14",
                  "product_id": "T026783-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_protect:10.1.14"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Spectrum Protect"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=5.12",
                "product": {
                  "name": "Open Source Linux Kernel \u003c=5.12",
                  "product_id": "T022443"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=5.12",
                "product": {
                  "name": "Open Source Linux Kernel \u003c=5.12",
                  "product_id": "T022443-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=3.13-rc1",
                "product": {
                  "name": "Open Source Linux Kernel \u003c=3.13-rc1",
                  "product_id": "T022444"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=3.13-rc1",
                "product": {
                  "name": "Open Source Linux Kernel \u003c=3.13-rc1",
                  "product_id": "T022444-fixed"
                }
              }
            ],
            "category": "product_name",
            "name": "Linux Kernel"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "3",
                "product": {
                  "name": "Oracle VM 3",
                  "product_id": "T019617",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:vm:3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "VM"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Red Hat OpenShift",
            "product": {
              "name": "Red Hat OpenShift",
              "product_id": "T008027",
              "product_identification_helper": {
                "cpe": "cpe:/a:redhat:openshift:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-1015",
      "product_status": {
        "known_affected": [
          "T008027",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T019617",
          "398363",
          "T022443",
          "T004914",
          "T026783"
        ]
      },
      "release_date": "2022-03-28T22:00:00.000+00:00",
      "title": "CVE-2022-1015"
    },
    {
      "cve": "CVE-2022-1016",
      "product_status": {
        "known_affected": [
          "T008027",
          "2951",
          "T002207",
          "T022444",
          "67646",
          "T000126",
          "T019617",
          "398363",
          "T004914",
          "T026783"
        ]
      },
      "release_date": "2022-03-28T22:00:00.000+00:00",
      "title": "CVE-2022-1016"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-1016 (GCVE-0-2022-1016)

WID-SEC-W-2022-0160

Tags

Sightings

Nomenclature