VDB-211028 · ~~CVE-2022-3530~~

Linux Kernel iproute2 ip/ipaddress.c ipaddr_link_get denial of service 🚫 [Falso Positivo]

Questo problema sembra essere un falso positivo. Verifichi le fonti citate e consideri di non utilizzare affatto questa voce.

Campo	24/10/2022 13:48	09/11/2022 14:37	09/11/2022 14:42
vendor	Linux	Linux	Linux
name	Kernel	Kernel	Kernel
component	iproute2	iproute2	iproute2
file	ip/ipaddress.c	ip/ipaddress.c	ip/ipaddress.c
function	ipaddr_link_get	ipaddr_link_get	ipaddr_link_get
cwe	401 (denial of service)	401 (denial of service)	401 (denial of service)
risk	1	1	1
cvss3_vuldb_av	L	L	L
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	H	H	H
cvss3_vuldb_ui	N	N	N
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	N	N	N
cvss3_vuldb_i	N	N	N
cvss3_vuldb_a	L	L	L
cvss3_vuldb_rl	O	O	O
cvss3_vuldb_rc	C	C	C
url	https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=1d540336b026ed5bfe10eefac383db7f434d842f	https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=1d540336b026ed5bfe10eefac383db7f434d842f	https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=1d540336b026ed5bfe10eefac383db7f434d842f
name	Patch	Patch	Patch
patch_url	https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=1d540336b026ed5bfe10eefac383db7f434d842f	https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=1d540336b026ed5bfe10eefac383db7f434d842f	https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=1d540336b026ed5bfe10eefac383db7f434d842f
cve	CVE-2022-3530	CVE-2022-3530	CVE-2022-3530
responsible	VulDB	VulDB	VulDB
date	1665871200 (16/10/2022)	1665871200 (16/10/2022)	1665871200 (16/10/2022)
type	Operating System	Operating System	Operating System
cvss2_vuldb_av	L	L	L
cvss2_vuldb_ac	L	L	L
cvss2_vuldb_ci	N	N	N
cvss2_vuldb_ii	N	N	N
cvss2_vuldb_ai	P	P	P
cvss2_vuldb_rc	C	C	C
cvss2_vuldb_rl	OF	OF	OF
cvss2_vuldb_au	M	M	M
cvss2_vuldb_e	ND	ND	ND
cvss3_vuldb_e	X	X	X
cvss2_vuldb_basescore	1.4	1.4	1.4
cvss2_vuldb_tempscore	1.2	1.2	1.2
cvss3_vuldb_basescore	2.3	2.3	2.3
cvss3_vuldb_tempscore	2.2	2.2	2.2
cvss3_meta_basescore	2.3	2.3	2.3
cvss3_meta_tempscore	2.2	2.2	2.2
price_0day
disputed	1	1	1
falsepositive	1	1	1
cve_assigned		1665871200 (16/10/2022)	1665871200 (16/10/2022)
cve_nvd_summary			A vulnerability was found in Linux Kernel and classified as problematic. Affected by this issue is the function ipaddr_link_get of the file ip/ipaddress.c of the component iproute2. The manipulation leads to memory leak. The attack may be launched remotely. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211028.

◂ Precedente Visione D'insieme Il prossimo ▸

Do you know our Splunk app?

Download it now for free!