Linux Kernel IPsec bond_alb.c rlb_arp_xmit 拒绝服务

在Linux Kernel 中曾发现分类为棘手的漏洞。受此问题影响的是功能rlb_arp_xmit文件：drivers/net/bonding/bond_alb.c的组件:IPsec。手动调试的不合法输入可导致拒绝服务。使用CWE来声明会导致 CWE-401 的问题。此漏洞的脆弱性 2022-10-21所提交。公告共享下载网址是git.kernel.org。该漏洞被处理的名称为CVE-2022-3624，攻击只能在局域网内发起。有技术细节可用。没有可利用漏洞。漏洞利用的当前现价为美元计算大致为USD $0-$5k。它被宣布为未定义。估计零日攻击的地下价格约为$0-$5k。错误修复程序下载地址为git.kernel.org，建议采用一个补丁来修正此问题。该漏洞被披露后，此前未曾发表过可能的缓解措施。

字段	2022-10-21 07時29分	2022-11-19 07時31分
cvss3_vuldb_s	U	U
cvss3_vuldb_c	N	N
cvss3_vuldb_i	N	N
cvss3_vuldb_a	L	L
cvss3_vuldb_rl	O	O
cvss3_vuldb_rc	C	C
url	https://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git/commit/?id=4f5d33f4f798b1c6d92b613f0087f639d9836971	https://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git/commit/?id=4f5d33f4f798b1c6d92b613f0087f639d9836971
name	补丁	补丁
patch_url	https://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git/commit/?id=4f5d33f4f798b1c6d92b613f0087f639d9836971	https://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git/commit/?id=4f5d33f4f798b1c6d92b613f0087f639d9836971
cve	CVE-2022-3624	CVE-2022-3624
responsible	VulDB	VulDB
vendor	Linux	Linux
name	Kernel	Kernel
component	IPsec	IPsec
file	drivers/net/bonding/bond_alb.c	drivers/net/bonding/bond_alb.c
function	rlb_arp_xmit	rlb_arp_xmit
cwe	401 (拒绝服务)	401 (拒绝服务)
risk	1	1
date	1666303200 (2022-10-21)	1666303200 (2022-10-21)
type	Operating System	Operating System
cvss2_vuldb_ci	N	N
cvss2_vuldb_ii	N	N
cvss2_vuldb_ai	P	P
cvss2_vuldb_rc	C	C
cvss2_vuldb_rl	OF	OF
cvss2_vuldb_av	A	A
cvss2_vuldb_ac	M	M
cvss2_vuldb_au	S	S
cvss2_vuldb_e	ND	ND
cvss3_vuldb_av	A	A
cvss3_vuldb_ac	L	L
cvss3_vuldb_pr	L	L
cvss3_vuldb_ui	N	N
cvss3_vuldb_e	X	X
cvss2_vuldb_basescore	2.3	2.3
cvss2_vuldb_tempscore	2.0	2.0
cvss3_vuldb_basescore	3.5	3.5
cvss3_vuldb_tempscore	3.4	3.4
cvss3_meta_basescore	3.5	3.5
cvss3_meta_tempscore	3.4	3.4
price_0day	$0-$5k	$0-$5k
cve_assigned		1666303200 (2022-10-21)
cve_nvd_summary		A vulnerability was found in Linux Kernel and classified as problematic. Affected by this issue is the function rlb_arp_xmit of the file drivers/net/bonding/bond_alb.c of the component IPsec. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211928.

◂ 上一步一览下一步 ▸

Do you know our Splunk app?

Download it now for free!