Vulnerabilities

CVE-2022-47929

by Fred · 17/01/2023

In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands. This affects qdisc_graft in net/sched/sch_api.c.

Date published : 2023-01-17

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.6

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=96398560f26aa07e8f2969d73c8197e6a6d10407

Similar

Tags: Cybersecurity Alert