Vulnerability Name:

CVE-2022-1116 (CCN-226962)

Assigned:2022-04-15
Published:2022-04-15
Updated:2022-10-19
Summary:Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and escalate privileges to root. This issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later versions.
CVSS v3 Severity:7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-190
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2022-1116

Source: MISC
Type: Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.html

Source: XF
Type: UNKNOWN
linux-kernel-cve20221116-priv-esc(226962)

Source: CCN
Type: Linux Kernel GIT Repository
io_uring: fix fs->users overflow

Source: MISC
Type: Exploit, Mailing List, Vendor Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/fs/io_uring.c?h=v5.4.189&id=1a623d361ffe5cecd4244a02f449528416360038

Source: MISC
Type: Patch, Third Party Advisory
https://kernel.dance/#1a623d361ffe5cecd4244a02f449528416360038

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20220629-0004/

Vulnerable Configuration:Configuration 1:
  • cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version >= 5.4.24 and < 5.4.189)

    • Configuration 2:
  • cpe:/o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:netapp:h300s:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:netapp:h500s:-:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:netapp:h700s:-:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:netapp:h410s:-:*:*:*:*:*:*:*

    • Configuration 6:
  • cpe:/o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:netapp:h410s:-:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:linux:linux_kernel:5.4.24:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:707
    P
    		Security update for the Linux Kernel (Important)
    2022-08-23
    oval:org.opensuse.security:def:118235
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:119287
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:118655
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:119468
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:118792
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:119653
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:118982
    P
    		Security update for the Linux Kernel (Important)
    2022-08-15
    oval:org.opensuse.security:def:118192
    P
    		Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118196
    P
    		Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118200
    P
    		Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118193
    P
    		Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118197
    P
    		Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118190
    P
    		Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118201
    P
    		Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118194
    P
    		Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118198
    P
    		Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118191
    P
    		Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118202
    P
    		Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118195
    P
    		Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:118199
    P
    		Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP2) (Important)
    2022-07-01
    oval:org.opensuse.security:def:1388
    P
    		Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3) (Important)
    2022-06-29
    oval:org.opensuse.security:def:1389
    P
    		Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP3) (Important)
    2022-06-29
    oval:org.opensuse.security:def:1390
    P
    		Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP3) (Important)
    2022-06-29
    oval:org.opensuse.security:def:1391
    P
    		Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP3) (Important)
    2022-06-29
    oval:org.opensuse.security:def:1402
    P
    		Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1395
    P
    		Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1406
    P
    		Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1399
    P
    		Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1392
    P
    		Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1403
    P
    		Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1396
    P
    		Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1400
    P
    		Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1393
    P
    		Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1404
    P
    		Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1397
    P
    		Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1401
    P
    		Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1394
    P
    		Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1405
    P
    		Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    oval:org.opensuse.security:def:1398
    P
    		Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP3) (Important) (in QA)
    2022-06-27
    BACK
    linux linux kernel *
    netapp h300s firmware -
    netapp h300s -
    netapp h500s firmware -
    netapp h500s -
    netapp h700s firmware -
    netapp h700s -
    netapp h410s firmware -
    netapp h410s -
    netapp h410s firmware -
    netapp h410s -
    linux linux kernel 5.4.24