CVE-2022-48642

medium

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain() It seems to me that percpu memory for chain stats started leaking since commit 3bc158f8d0330f0a ("netfilter: nf_tables: map basechain priority to hardware priority") when nft_chain_offload_priority() returned an error.

References

https://git.kernel.org/stable/c/b043a525a3f5520abb676a7cd8f6328fdf959e88

https://git.kernel.org/stable/c/9a4d6dd554b86e65581ef6b6638a39ae079b17ac

https://git.kernel.org/stable/c/985b031667c3177b9e7fb9787b989628e4271714

https://git.kernel.org/stable/c/08d7524f366a886b99b1630a24a27dd6e0d7f852

Details

Source: Mitre, NVD

Published: 2024-04-28

Updated: 2024-04-29

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium