CVE-2022-2959

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-2959

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-2959.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-2959

Aliases

A-244395411
ASB-A-244395411

Downstream

DEBIAN-CVE-2022-2959

OESA-2022-1893

RHSA-2022:8973

RHSA-2022:8974

RHSA-2022:9082

RHSA-2023:0300

RHSA-2023:0334

RHSA-2023:0348

SUSE-SU-2022:3288-1

SUSE-SU-2022:3293-1

SUSE-SU-2022:4113-1

SUSE-SU-2022:4617-1

UBUNTU-CVE-2022-2959

USN-5594-1

USN-5599-1

USN-5602-1

USN-5616-1

USN-5623-1

Related

Published

2022-08-25T18:15:10Z

Modified

2025-08-09T20:01:27Z

Severity

7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering(). The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the system or escalate their privileges on the system.

References

Affected packages