CVE-2022-49258 | Linux Kernel up to 5.10.109/5.15.32/5.16.18/5.17.1 cc_cipher_exit kfree_sensitive(ctx_p->user.key) use after free

Inserito da Angelo Barbosa | Feb 26, 2025 | CVE

A vulnerability classified as critical has been found in Linux Kernel up to 5.10.109/5.15.32/5.16.18/5.17.1. This affects the function kfree_sensitive(ctx_p->user.key) of the component cc_cipher_exit. The manipulation leads to use after free.

This vulnerability is uniquely identified as CVE-2022-49258. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2022-49258 | Linux Kernel up to 5.10.109/5.15.32/5.16.18/5.17.1 cc_cipher_exit kfree_sensitive(ctx_p->user.key) use after free

Post correlati

CVE-2024-39489 | Linux Kernel up to 6.9.3 ipv6 seg6_hmac_init_algo memory leak

CVE-2023-52530 | Linux Kernel up to 6.1.56/6.5.6 mac80211 ieee80211_key_link use after free (2f4e16e39e4f/65c72a720170/31db78a4923e)

CVE-2024-56214 | DeluxeThemes Userpro Plugin up to 5.1.9 on WordPress path traversal

CVE-2024-27431 | Linux Kernel up to 5.10.212/5.15.151/6.1.81/6.6.21/6.7.9 cpumap xdp_rxq_info random values