CVE-2022-2590

EPSS 0.9%CWE-362

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

31 Aug 2022Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only shared memory mappings. This flaw allows an unprivileged, local user to gain write access to read-only memory mappings, increasing their privileges on the system.

Affected products

n/a · Linux kernel

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://lore.kernel.org/linux-mm/20220808073232.8808-1-david%40redhat.com/https://www.openwall.com/lists/oss-security/2022/08/08/1