CVE-2022-4269 - OpenCVE

A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when the transport protocol in use (TCP or SCTP) does a retransmission, resulting in a denial of service condition.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Linux	Linux Kernel

Configuration 1 [-]

cpe:2.3:o:linux:linux_kernel:4.1:rc1:*:*:*:*:*:*

References

Link	Resource
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
https://lore.kernel.org/netdev/33dc43f587ec1388ba456b4915c75f02a8aae226.1663945716.git.dcaratti%40redhat.com/
https://security.netapp.com/advisory/ntap-20230929-0001/
https://www.debian.org/security/2023/dsa-5480

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2022-12-05T00:00:00

Updated: 2022-12-05T00:00:00

Reserved: 2022-12-02T00:00:00

Link: CVE-2022-4269

JSON object: View

NVD Information

Status : Modified

Published: 2022-12-05T16:15:10.283

Modified: 2023-10-20T00:15:11.157

Link: CVE-2022-4269

JSON object: View

Redhat Information

No data.

CWE

CWE-833

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc1:*:*:*:*:*:*", "matchCriteriaId": "DD00F761-489D-40EF-A0E1-DA7EEB2EA2F8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action \"mirred\") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when the transport protocol in use (TCP or SCTP) does a retransmission, resulting in a denial of service condition."}, {"lang": "es", "value": "Se encontr\u00f3 un fallo en el subsistema de control de tr\u00e1fico (TC) del kernel de Linux. Usando una configuraci\u00f3n de red espec\u00edfica (redireccionando paquetes de salida para ingresar usando la acci\u00f3n TC \"mirred\"), un usuario local sin privilegios podr\u00eda desencadenar un bloqueo suave de la CPU (bloqueo ABBA) cuando el protocolo de transporte en uso (TCP o SCTP) realiza una retransmisi\u00f3n, lo que resulta en una condici\u00f3n de denegaci\u00f3n de servicio."}], "id": "CVE-2022-4269", "lastModified": "2023-10-20T00:15:11.157", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-12-05T16:15:10.283", "references": [{"source": "secalert@redhat.com", "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html"}, {"source": "secalert@redhat.com", "url": "https://lore.kernel.org/netdev/33dc43f587ec1388ba456b4915c75f02a8aae226.1663945716.git.dcaratti%40redhat.com/"}, {"source": "secalert@redhat.com", "url": "https://security.netapp.com/advisory/ntap-20230929-0001/"}, {"source": "secalert@redhat.com", "url": "https://www.debian.org/security/2023/dsa-5480"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-833"}], "source": "secalert@redhat.com", "type": "Primary"}]}