Vulnerability Description
A vulnerability was found in Linux Kernel. It has been declared as problematic. This vulnerability affects the function vsock_connect of the file net/vmw_vsock/af_vsock.c. The manipulation leads to memory leak. The complexity of an attack is rather high. The exploitation appears to be difficult. It is recommended to apply a patch to fix this issue. VDB-211930 is the identifier assigned to this vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | - |
| Debian | Debian Linux | 10.0 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git/commit/?Mailing ListPatchVendor Advisory
- https://vuldb.com/?ctiid.211930Third Party Advisory
- https://vuldb.com/?id.211930Third Party Advisory
- https://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git/commit/?Mailing ListPatchVendor Advisory
- https://vuldb.com/?ctiid.211930Third Party Advisory
- https://vuldb.com/?id.211930Third Party Advisory
FAQ
What is CVE-2022-3629?
CVE-2022-3629 is a vulnerability with a CVSS score of 2.6 (LOW). A vulnerability was found in Linux Kernel. It has been declared as problematic. This vulnerability affects the function vsock_connect of the file net/vmw_vsock/af_vsock.c. The manipulation leads to me...
How severe is CVE-2022-3629?
CVE-2022-3629 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-3629?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.