Stack Overflow Vulnerability in Linux Kernel's TIPC Protocol Allows Remote System Crash or Privilege Escalation

Stack Overflow Vulnerability in Linux Kernel's TIPC Protocol Allows Remote System Crash or Privilege Escalation

CVE-2022-0435 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges if they have access to the TIPC network.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.