[SRU Focal 0/1] CVE-2022-1116
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Wed May 18 04:30:19 UTC 2022
[Impact]
From https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1116:
Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows
local attacker to cause memory corruption and escalate privileges to root. This
issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later
versions.
Pavel Begunkov (1):
io_uring: fix fs->users overflow
fs/io_uring.c | 28 ++++++++++++++++++----------
1 file changed, 18 insertions(+), 10 deletions(-)
--
2.32.0
More information about the kernel-team
mailing list