CVE-2022-1012

HIGH Year: 2022
CVSS v3 Score
8.2
High
Weakness Type
CWE-401
View all →

Vulnerability Description

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.

Related Vulnerabilities

CVE-2023-34451

HIGH
CVSS:8.2(High)

CometBFT is a Byzantine Fault Tolerant (BFT) middleware that takes a state transition machine and replicates it on many machines. The mempool maintains two data structures to keep track of outstanding...

CWE-4012023

CVE-2023-41484

HIGH
CVSS:8.1(High)

An issue in cimg.eu Cimg Library v2.9.3 allows an attacker to obtain sensitive information via a crafted JPEG file.

CWE-4012023

CVE-2019-10547

HIGH
CVSS:7.8(High)

When issuing IOCTL calls to ION, Memory leak can occur due to failure in unassign pages under certain conditions in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, S...

CWE-4012019

CVE-2021-31240

HIGH
CVSS:7.8(High)

An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file.

CWE-4012021

CVE-2021-3492

HIGH
CVSS:7.8(High)

Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situ...

CWE-4012021

CVE-2021-42197

HIGH
CVSS:7.8(High)

An issue was discovered in swftools through 20201222 through a memory leak in the swftools when swfdump is used. It allows an attacker to cause code execution.

CWE-4012021