Unrated severityNVD Advisory· Published Jun 30, 2022· Updated Aug 3, 2024
CVE-2022-2078
CVE-2022-2078
Description
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
41- osv-coords40 versionspkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-kvmpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-kvmpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perf
< 5.14.0-70.26.1.el9_0+ 39 more
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 4.18.0-425.3.1.el8
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.rt21.98.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
- (no CPE)range: < 5.14.0-70.26.1.el9_0
Patches
Vulnerability mechanics
References
3News mentions
1- ZDI-26-193: (Pwn2Own) Linux Kernel nf_tables_newset Out-Of-Bounds Write Information Disclosure VulnerabilityZero Day Initiative · Mar 16, 2026