CVE-2022-36879

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-36879
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=f85daf0e725358be78dfd208dea5fd665d8cb901 Mailing List Patch Third Party Advisory
https://github.com/torvalds/linux/commit/f85daf0e725358be78dfd208dea5fd665d8cb901 Patch Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/09/msg00011.html Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20220901-0007/ Third Party Advisory
https://www.debian.org/security/2022/dsa-5207 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:netapp:a700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:a700s:-:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:netapp:aff_8300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_8300:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:netapp:fas_8300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_8300:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:netapp:aff_8700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_8700:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:netapp:fas_8700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_8700:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_a400:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:netapp:fas_a400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_a400:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:netapp:aff_a250_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_a250:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:netapp:fas_a250_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_a250:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:netapp:fas_500f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_500f:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:netapp:aff_500f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_500f:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:netapp:h610c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h610c:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:netapp:h615c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h615c:-:*:*:*:*:*:*:*
History

04 Nov 2022, 18:15

Type Values Removed Values Added
CPE cpe:2.3:h:netapp:a700s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:a700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_a250:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_500f:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
cpe:2.3:o:netapp:aff_8700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:fas_a250_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:fas_a400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:aff_500f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h615c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_a400:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:fas_8700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h610c:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_a400:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_500f:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:aff_a250_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:aff_8300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:fas_8300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h610c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:fas_500f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h615c:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_8700:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:fas_8300:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_8700:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_a250:-:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:aff_8300:-:*:*:*:*:*:*:*
References (DEBIAN) https://www.debian.org/security/2022/dsa-5207 - (DEBIAN) https://www.debian.org/security/2022/dsa-5207 - Third Party Advisory
References (CONFIRM) https://security.netapp.com/advisory/ntap-20220901-0007/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20220901-0007/ - Third Party Advisory
References (MLIST) https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html - (MLIST) https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html - Mailing List, Third Party Advisory
References (MLIST) https://lists.debian.org/debian-lts-announce/2022/09/msg00011.html - (MLIST) https://lists.debian.org/debian-lts-announce/2022/09/msg00011.html - Mailing List, Third Party Advisory
First Time Netapp fas A250 Firmware
Netapp aff 500f Firmware
Netapp fas A400
Netapp h500s
Netapp fas A400 Firmware
Netapp a700s
Netapp h410s Firmware
Netapp aff A400
Netapp fas 8300 Firmware
Netapp aff 8300
Netapp h700s
Netapp active Iq Unified Manager
Netapp e-series Santricity Os Controller
Netapp h410c Firmware
Netapp fas A250
Netapp aff 500f
Debian debian Linux
Netapp a700s Firmware
Netapp hci Bootstrap Os
Netapp h610c Firmware
Netapp aff A250 Firmware
Netapp h615c
Netapp h500s Firmware
Netapp aff 8700
Netapp aff A250
Netapp fas 8700
Netapp fas 500f
Netapp h610c
Netapp h610s Firmware
Debian
Netapp aff 8700 Firmware
Netapp h610s
Netapp fas 8700 Firmware
Netapp h615c Firmware
Netapp aff 8300 Firmware
Netapp fas 8300
Netapp h300s
Netapp h410c
Netapp aff A400 Firmware
Netapp
Netapp h300s Firmware
Netapp h700s Firmware
Netapp h410s
Netapp fas 500f Firmware

02 Oct 2022, 19:15

Type Values Removed Values Added
References
  • (MLIST) https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html -

11 Sep 2022, 22:15

Type Values Removed Values Added
References
  • (MLIST) https://lists.debian.org/debian-lts-announce/2022/09/msg00011.html -

01 Sep 2022, 14:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20220901-0007/ -

16 Aug 2022, 15:15

Type Values Removed Values Added
References
  • (DEBIAN) https://www.debian.org/security/2022/dsa-5207 -

02 Aug 2022, 18:53

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
First Time Linux
Linux linux Kernel
References (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=f85daf0e725358be78dfd208dea5fd665d8cb901 - (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=f85daf0e725358be78dfd208dea5fd665d8cb901 - Mailing List, Patch, Third Party Advisory
References (MISC) https://github.com/torvalds/linux/commit/f85daf0e725358be78dfd208dea5fd665d8cb901 - (MISC) https://github.com/torvalds/linux/commit/f85daf0e725358be78dfd208dea5fd665d8cb901 - Patch, Third Party Advisory
CWE NVD-CWE-Other
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5

27 Jul 2022, 04:15

Type Values Removed Values Added
New CVE
Information

Published : 2022-07-27 04:15

Updated : 2023-12-10 14:35

NVD link : CVE-2022-36879

Mitre link : CVE-2022-36879

CVE.ORG link : CVE-2022-36879

JSON object : View

Products Affected

netapp

  • a700s_firmware
  • h700s_firmware
  • aff_500f_firmware
  • fas_500f
  • h500s_firmware
  • h700s
  • aff_a400_firmware
  • h615c_firmware
  • h410c_firmware
  • h615c
  • h610s_firmware
  • aff_500f
  • fas_8300_firmware
  • aff_a400
  • aff_a250
  • h300s_firmware
  • a700s
  • fas_8700_firmware
  • fas_a250
  • fas_8700
  • h610s
  • h500s
  • fas_500f_firmware
  • h410c
  • h610c
  • fas_a400
  • aff_8300
  • aff_8700_firmware
  • active_iq_unified_manager
  • fas_8300
  • h410s_firmware
  • fas_a250_firmware
  • h410s
  • hci_bootstrap_os
  • aff_8300_firmware
  • aff_8700
  • h300s
  • h610c_firmware
  • aff_a250_firmware
  • e-series_santricity_os_controller
  • fas_a400_firmware

linux

  • linux_kernel

debian

  • debian_linux
CWE
NVD-CWE-Other