mend-bolt-for-github[bot]
commented
1 year ago :information_source: This issue was automatically closed by Mend because it is a duplicate of an existing issue: #874
Closed mend-bolt-for-github[bot] closed 1 year ago
mend-bolt-for-github[bot]
commented
1 year ago :information_source: This issue was automatically closed by Mend because it is a duplicate of an existing issue: #874
CVE-2022-4129 - Medium Severity Vulnerability
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. A local user could use this flaw to potentially crash the system causing a denial of service.
Publish Date: 2022-11-28
URL: CVE-2022-4129
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Local - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here.Type: Upgrade version
Origin: https://www.linuxkernelcves.com/cves/CVE-2022-4129
Release Date: 2022-11-28
Fix Resolution: v5.4.231,v5.10.166,v5.15.91
Step up your Open Source Security Game with Mend here