vulnerability

Amazon Linux AMI: CVE-2022-2318: Security patch for kernel (ALAS-2022-1624)

Try Surface Command
Back to search
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:N/I:N/A:C)
Published
2022-07-06
Added
2022-08-05
Modified
2025-05-13

Description

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.

Solution

amazon-linux-upgrade-kernel

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today