发布于3月6日3月6日 Members Red Hat: CVE-2022-4744: kernel: tun: avoid double free in tun_free_netdev (Multiple Advisories) Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 03/27/2023 Created 03/28/2023 Added 03/28/2023 Modified 01/28/2025 Description A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the register_netdevice function fails (NETDEV_REGISTER notifier). This flaw allows a local user to crash or potentially escalate their privileges on the system. Solution(s) redhat-upgrade-kernel redhat-upgrade-kernel-rt References CVE-2022-4744 RHSA-2023:1466 RHSA-2023:1467 RHSA-2023:1468 RHSA-2023:1469 RHSA-2023:1470 RHSA-2023:1471 RHSA-2023:6901 RHSA-2023:7077 RHSA-2024:1404 View more
