Home > Vulnerability Database > CVE-2022-4379

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2022-4379

Date: January 9, 2023

A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial

Language: C

Severity Score

7.5

Related Resources (13)

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-4379

Url: https://access.redhat.com/security/cve/CVE-2022-4379

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LECFVUHKIRBV5JJBE3KQCLGKNYJPBRCN/

Url: https://security.netapp.com/advisory/ntap-20230223-0004/

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAVD6JIILAVSRHZ4VXSV3RAAGUXKVXZA/

Url: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=aeba12b26c79fc35e07e511f692a8907037d95da

Url: https://security-tracker.debian.org/tracker/CVE-2022-4379

Url: https://seclists.org/oss-sec/2022/q4/185

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LECFVUHKIRBV5JJBE3KQCLGKNYJPBRCN/

Url: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=75333d48f92256a0dec91dbf07835e804fc411c0

Url: https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RAVD6JIILAVSRHZ4VXSV3RAAGUXKVXZA/

Url: https://www.mend.io/vulnerability-database/CVE-2022-4379

Severity Score

7.5

Weakness Type (CWE)

Use After Free

CWE-416

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Do you need more information?

Contact Us