by vicarius
log in join community
by @basantSingh007
24 Nov 2023
#cve_analysis

Write a blog analysis for a CVE

publish

A type confusion bug in nft_set_elem_init (leading to a buffer overflow)

by @basantSingh007
by @basantSingh007
24 Nov 2023
#cve_analysis

Write a blog analysis for a CVE

publish

A type confusion bug in nft_set_elem_init (leading to a buffer overflow)

CVEs

CVE-2022-34918
7.8 High Severity

OS

Debian Linux
Debian LinuxDebian
22.04.*
2.5.3-3.*
2.5.3-16.*
2.5.2-1.*
*.*
2.1.8.8.p3-1.1.*
10.10.*
3.0.23.*
12.4.*
3.0.18.*
LK
Linux KernelLinux
6.12.19.*
6.12.21.*
5.4.292.*
5.4.291.*
5.4.288.*
6.12.18.*
6.12.17.*
5.15.180.*
5.10.236.*
5.10.232.*
UL
Ubuntu LinuxCanonical
24.04.*
23.04.*
23.04.*
22.04.*
22.04.*
22.04.*
20.04.5.*
21.04.*
21.04.*
23.10.*
HF
H410S FirmwareNetapp
-.*
HF
H700S FirmwareNetapp
-.*
HF
H500S FirmwareNetapp
-.*
HF
H300S FirmwareNetapp
-.*
HF
H410C FirmwareNetapp
-.*

Screenshots from the blog posts

images/closgybxy54861holhtwddmvk.jpgimages/closgybxy54861holhtwddmvk.jpg

Summary

An issue was discovered in the Linux kernel A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability

Description

Tags

#CVE-2022-34918#trending#nft_tables#Buffer-Overflow#Heap-Overflow
users/photos/clppy146t93zn1hnace5s1c7a.jpg

@basantSingh007

6 posts

Total vcoins

6.3K

Comments (0)