vulnerability

Red Hat: CVE-2022-0286: Local denial of service in bond_ipsec_add_sa (Multiple Advisories)

Name: Red Hat: CVE-2022-0286: Local denial of service in bond_ipsec_add_sa (Multiple Advisories)
Creator: Red Hat
Published: 2022-01-31T00:00:00.000Z
Keywords: CVE, CWE-476, Red Hat, 2022, 0286, Local denial of service in bond_ipsec_add_sa (Multiple Advisories), redhat-upgrade-kernel, redhat-upgrade-kernel-rt, Severity 2

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:P)

Published

Jan 31, 2022

Added

May 13, 2022

Modified

Jun 12, 2026

Description

A NULL pointer dereference flaw was found in the Linux kernel’s bonding driver in the way a user bonds non existing or fake device. This flaw allows a local user to crash the system, causing a denial of service.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-476
EUVD-EUVD-2022-15457
NVD-CVE-2022-0286
REDHAT-RHSA-2022:1975
REDHAT-RHSA-2022:1988
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-15457

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report