Privilege Escalation via Pointer Arithmetic in Linux Kernel (CVE-2021-44252)

Privilege Escalation via Pointer Arithmetic in Linux Kernel (CVE-2021-44252)

CVE-2022-23222 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of pointer arithmetic via certain *_OR_NULL pointer types.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.