CVE-2022-2959

Source
https://cve.org/CVERecord?id=CVE-2022-2959
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-2959.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-2959
Aliases
Downstream
Related
Published
2022-08-25T00:00:00Z
Modified
2026-07-07T08:52:36.345857024Z
Summary
[none]
Details

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering(). The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the system or escalate their privileges on the system.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/2xxx/CVE-2022-2959.json",
    "cna_assigner": "redhat",
    "cwe_ids": [
        "CWE-667"
    ]
}
References

Affected packages

Git / github.com/torvalds/linux

Affected ranges

Type
GIT
Repo
https://github.com/torvalds/linux
Events
Database specific
{
    "source": "AFFECTED_FIELD",
    "extracted_events": [
        {
            "introduced": "Fixed in kernel 5.19"
        },
        {
            "last_affected": "Fixed in kernel 5.19"
        }
    ]
}

Affected versions

Fixed in kernel 5.*
Fixed in kernel 5.19
v5.*
v5.19

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-2959.json"