Vulnerability Details : CVE-2022-42703
mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anon_vma double reuse.
Vulnerability category: Memory Corruption
Exploit prediction scoring system (EPSS) score for CVE-2022-42703
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2022-42703
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
nvd@nist.gov |
CWE ids for CVE-2022-42703
-
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.Assigned by: nvd@nist.gov (Primary)
References for CVE-2022-42703
-
https://github.com/torvalds/linux/commit/2555283eb40df89945557273121e9393ef9b542b
mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse · torvalds/linux@2555283 · GitHubPatch;Third Party Advisory
-
https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html
Project Zero: Exploiting CVE-2022-42703 - Bringing back the stack attackExploit;Technical Description;Third Party Advisory
-
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.19.7
Mailing List;Patch;Vendor Advisory
-
https://bugs.chromium.org/p/project-zero/issues/detail?id=2351
2351 - Linux >=3.19: anon_vma UAF through bogus merge of VMAs caused by double-reuse of leaf anon_vma because of ->degree misinterpretation - project-zeroExploit;Mailing List;Third Party Advisory
-
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2555283eb40df89945557273121e9393ef9b542b
kernel/git/torvalds/linux.git - Linux kernel source treeMailing List;Patch;Vendor Advisory
Products affected by CVE-2022-42703
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*