Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2022-47952

Date: January 1, 2023

lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected directory tree, because "Failed to open" often indicates that a file does not exist, whereas "does not refer to a network namespace path" often indicates that a file exists. NOTE: this is different from CVE-2018-6556 because the CVE-2018-6556 fix design was based on the premise that "we will report back to the user that the open() failed but the user has no way of knowing why it failed"; however, in many realistic cases, there are no plausible reasons for failing except that the file does not exist.

Language: C

Severity Score

Related Resources (9)

https://security-tracker.debian.org/tracker/CVE-2022-47952
https://lists.debian.org/debian-lts-announce/2023/08/msg00025.html
https://github.com/lxc/lxc/blob/0b83d71c2c8f3bac9503f894cd84584f79258bb3/src/lxc/cmd/lxc_user_nic.c#L1085-L1104
https://github.com/MaherAzzouzi/CVE-2022-47952
https://github.com/lxc/lxc/blob/0b83d71c2c8f3bac9503f894cd84584f79258bb3/lxc.spec.in#L274
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1783591/comments/45
https://people.canonical.com/~ubuntu-security/cve/CVE-2022-47952
https://nvd.nist.gov/vuln/detail/CVE-2022-47952
https://www.mend.io/vulnerability-database/CVE-2022-47952

Severity Score

Weakness Type (CWE)

Exposure of Resource to Wrong Sphere

CWE-668

Observable Discrepancy

CWE-203

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): NONE
Availability (A): NONE

Do you need more information?

Contact Us