Vuldb Updates

A vulnerability was found in Linux Kernel up to 5.19.5 and classified as critical. Affected by this vulnerability is the function __xfrm_policy_check of the component xfrm. Such manipulation leads to improper update of reference count. This vulnerability is documented as CVE-2022-50007. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.19.5. It has been classified as critical. Affected by this issue is the function disarm_kprobe of the file /sys/kernel/debug/kprobes/enabled of the component kprobes. Performing manipulation results in infinite loop. This vulnerability is reported as CVE-2022-50008. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability classified as critical was found in Linux Kernel up to 5.18.17/5.19.3. Affected by this issue is the function f2fs_get_dnode_of_data. The manipulation results in null pointer dereference. This vulnerability is cataloged as CVE-2022-50009. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.10.139/5.15.63/5.19.5. This impacts the function alloc_file_pseudo. The manipulation results in privilege escalation. This vulnerability is cataloged as CVE-2022-50006. The attack must originate from the local network. There is no exploit available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.139/5.15.63/5.19.5. It has been rated as critical. This vulnerability affects the function pn532_uart_remove of the component nfc. The manipulation leads to use after free. This vulnerability is traded as CVE-2022-50005. Access to the local network is required for this attack to succeed. There is no exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 4.19.272/5.4.231/5.10.168/5.15.94/5.19.5. This affects the function nft_tproxy of the component netfilter. The manipulation leads to null pointer dereference. This vulnerability is listed as CVE-2022-50001. The attack must be carried out from within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.10.139/5.15.63/5.19.5. The affected element is the function error_code of the component ice. The manipulation results in null pointer dereference. This vulnerability was named CVE-2022-50003. The attack needs to be approached within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.10.139/5.15.63/5.19.5. This impacts the function xfrmi_xmit2. Such manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-50004. The attack can only be initiated within the local network. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.19.5 and classified as critical. Affected is the function mlx5_do_bond. This manipulation causes null pointer dereference. This vulnerability is registered as CVE-2022-50002. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

A vulnerability described as critical has been identified in Linux Kernel up to 5.15.64/5.19.5. The impacted element is an unknown function of the component btrfs. Such manipulation leads to memory corruption. This vulnerability is listed as CVE-2022-49999. The attack must be carried out from within the local network. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.63/5.19.5. This impacts the function gc_step of the component netfilter. Executing manipulation can lead to use after free. This vulnerability is registered as CVE-2022-50000. The attack requires access to the local network. No exploit is available. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 5.10.139/5.15.63/5.19.5. It has been classified as critical. This vulnerability affects the function rxrpc_new_client_call. Performing manipulation results in buffer overflow. This vulnerability is known as CVE-2022-49998. Access to the local network is required for this attack. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel and classified as problematic. This affects the function build_skb of the component net. Such manipulation leads to allocation of resources. This vulnerability is traded as CVE-2022-49997. Access to the local network is required for this attack to succeed. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.63/5.19.5. Affected by this vulnerability is the function wb_inode_writeback_end of the component writeback. The manipulation results in use after free. This vulnerability is reported as CVE-2022-49995. The attacker must have access to the local network to execute the attack. No exploit exists. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.63/5.19.5 and classified as critical. Affected by this issue is the function btrfs_get_dev_args_from_path. This manipulation causes memory leak. This vulnerability appears as CVE-2022-49996. The attacker needs to be present on the local network. There is no available exploit. The affected component should be upgraded.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.63/5.19.5. Affected is the function put_page_bootmem of the component bootmem. The manipulation leads to memory leak. This vulnerability is documented as CVE-2022-49994. The attack requires being on the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.19.5. This affects the function lo_ioctl of the file drivers/block/loop.c. Performing manipulation results in memory corruption. This vulnerability is cataloged as CVE-2022-49993. The attack must originate from the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability labeled as problematic has been found in Linux Kernel up to 5.19.5. Impacted is the function swp_offset_pfn. The manipulation results in privilege escalation. This vulnerability is identified as CVE-2022-49992. The attack can only be performed from the local network. There is not any exploit available. The affected component should be upgraded.

A vulnerability classified as problematic has been found in Oracle Sun Systems Products Suite 10/11. Impacted is an unknown function of the component Solaris. This manipulation causes improper access controls. This vulnerability is registered as CVE-2017-3630. The attack needs to be launched locally. Furthermore, an exploit is available.

A vulnerability was found in Ruby up to 2.2.7/2.3.4/2.4.1. It has been rated as critical. This issue affects some unknown processing of the component Net::FTP. This manipulation with the input | as part of Argument causes os command injection. The identification of this vulnerability is CVE-2017-17405. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Upgrading the affected component is advised.