CVE-2022-0185 — HIGH (8.4) — White Hats Nepal

Q: How severe is CVE-2022-0185?

CVE-2022-0185 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-0185?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Netapp H410C Firmware, Netapp H410C, Netapp H300S Firmware, Netapp H300S.

Vulnerability Description

A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system.

CVSS Score

8.4

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	>= 5.1, < 5.4.173
Netapp	H410C Firmware	-
Netapp	H410C	-
Netapp	H300S Firmware	-
Netapp	H300S	-
Netapp	H500S Firmware	-
Netapp	H500S	-
Netapp	H700S Firmware	-
Netapp	H700S	-
Netapp	H300E Firmware	-
Netapp	H300E	-
Netapp	H500E Firmware	-
Netapp	H500E	-
Netapp	H700E Firmware	-
Netapp	H700E	-
Netapp	H410S Firmware	-
Netapp	H410S	-

Related Weaknesses (CWE)

CWE-190 CWE-191

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=72Mailing ListPatch
https://github.com/Crusaders-of-Rust/CVE-2022-0185ExploitThird Party Advisory
https://security.netapp.com/advisory/ntap-20220225-0003/Third Party Advisory
https://www.openwall.com/lists/oss-security/2022/01/18/7Mailing ListPatchThird Party Advisory
https://www.willsroot.io/2022/01/cve-2022-0185.htmlExploitThird Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=72Mailing ListPatch
https://github.com/Crusaders-of-Rust/CVE-2022-0185ExploitThird Party Advisory
https://security.netapp.com/advisory/ntap-20220225-0003/Third Party Advisory
https://www.openwall.com/lists/oss-security/2022/01/18/7Mailing ListPatchThird Party Advisory
https://www.willsroot.io/2022/01/cve-2022-0185.htmlExploitThird Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-US Government Resource

FAQ

What is CVE-2022-0185?

CVE-2022-0185 is a vulnerability with a CVSS score of 8.4 (HIGH). A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivile...

How severe is CVE-2022-0185?

CVE-2022-0185 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-0185?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Netapp H410C Firmware, Netapp H410C, Netapp H300S Firmware, Netapp H300S.