CVE-2022-49919
- Source
- https://cve.org/CVERecord?id=CVE-2022-49919
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49919.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49919
- Downstream
- Published
- 2025-05-01T14:10:58.779Z
- Modified
- 2026-03-20T12:24:46.901189Z
- Severity
-
- 7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- netfilter: nf_tables: release flow rule object from commit path
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: release flow rule object from commit path
No need to postpone this to the commit release path, since no packets are walking over this object, this is accessed from control plane only. This helped uncovered UAF triggered by races with the netlink notifier.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49919.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/26b5934ff4194e13196bedcba373cd4915071d0e
- https://git.kernel.org/stable/c/4ab6f96444e936f5e4a936d5c0bc948144bcded3
- https://git.kernel.org/stable/c/6044791b7be707fd0e709f26e961a446424e5051
- https://git.kernel.org/stable/c/74fd5839467054cd9c4d050614d3ee8788386171
- https://git.kernel.org/stable/c/b2d7a92aff0fbd93c29d2aa6451fb99f050e2c4e
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49919.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49919
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced5b8d63489c3b701eb2a76f848ec94d8cbc9373b9Fixed74fd5839467054cd9c4d050614d3ee8788386171
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced330c0c6cd2150a2d7f47af16aa590078b0d2f736Fixedb2d7a92aff0fbd93c29d2aa6451fb99f050e2c4e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede33d9bd563e71f6c6528b96008d65524a459c4dcFixed6044791b7be707fd0e709f26e961a446424e5051
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced9dd732e0bdf538b1b76dc7c157e2b5e560ff30d3Fixed4ab6f96444e936f5e4a936d5c0bc948144bcded3Fixed26b5934ff4194e13196bedcba373cd4915071d0e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected80de9ea1f5b808a6601e91111fae601df2b26369Last affectedab9f34a30c23f656e76f4c5b83125a4e7b53c86e