CVE-2022-48757: net: fix information leakage in /proc/net/ptype

Published Jun 20, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

net: fix information leakage in /proc/net/ptype

In one net namespace, after creating a packet socket without binding it to a device, users in other net namespaces can observe the new packettype added by this packet socket by reading /proc/net/ptype file. This is minor information leakage as packet socket is namespace aware.

Add a net pointer in packettype to keep the net namespace of of corresponding packet socket. In ptypeseqshow, this net pointer must be checked when it is not NULL.

Other sources

In the Linux kernel, the following vulnerability has been resolved:

net: fix information leakage in /proc/net/ptype

The Linux kernel CVE team has assigned CVE-2022-48757 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024062007-CVE-2022-48757-c816@gregkh/T

Red Hat

Linux Kernel could allow a remote authenticated attacker to obtain sensitive information, caused by incorrect default permissions in netdevice.h. By sending a specially crafted request, a remote attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.

IBM

Affected Software

22 affected componentsFixes available
redhat/kernel<4.4.302
4.4.302
redhat/kernel<4.9.300
4.9.300
redhat/kernel<4.14.265
4.14.265
redhat/kernel<4.19.228
4.19.228
redhat/kernel<5.4.176
5.4.176
redhat/kernel<5.10.96
5.10.96
redhat/kernel<5.15.19
5.15.19
redhat/kernel<5.16.5
5.16.5
redhat/kernel<5.17
5.17
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
Linux Linux kernel>=2.6.26<4.4.302
Linux Linux kernel>=4.5<4.9.300
Linux Linux kernel>=4.10<4.14.265
Linux Linux kernel>=4.15<4.19.228
Linux Linux kernel>=4.20<5.4.176
Linux Linux kernel>=5.5<5.10.96
Linux Linux kernel>=5.11<5.15.19
Linux Linux kernel>=5.16<5.16.5
Linux Linux kernel=5.17-rc1

Remediation

Patch Available

https://git.kernel.org/stable/c/47934e06b65637c88a762d9c98329ae6e3238888

Patch Available

https://git.kernel.org/stable/c/839ec7039513a4f84bfbaff953a9393471176bee

Patch Available

https://git.kernel.org/stable/c/8f88c78d24f6f346919007cd459fd7e51a8c7779

Patch Available

https://git.kernel.org/stable/c/b67ad6170c0ea87391bb253f35d1f78857736e54

Patch Available

https://git.kernel.org/stable/c/be1ca30331c7923c6f376610c1bd6059be9b1908

Patch Available

https://git.kernel.org/stable/c/c38023032a598ec6263e008d62c7f02def72d5c7

Patch Available

https://git.kernel.org/stable/c/db044d97460ea792110eb8b971e82569ded536c6

Patch Available

https://git.kernel.org/stable/c/e372ecd455b6ebc7720f52bf4b5f5d44d02f2092

Patch Available

https://git.kernel.org/stable/c/e43669c77cb3a742b7d84ecdc7c68c4167a7709b

Event History

Jun 20, 2024
CVE Published
via MITRE·11:13 AM
Data Sourced
via MITRE·11:13 AM
Description
Data Sourced
via NVD·12:15 PM
RemedyDescriptionSeverityWeaknessAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2022-48757?

CVE-2022-48757 is classified as a low severity vulnerability due to information leakage in net namespaces.

2

How do I fix CVE-2022-48757?

To mitigate CVE-2022-48757, you should update to the latest kernel versions specified such as 4.4.302, 4.9.300, 4.14.265, 4.19.228, 5.4.176, 5.10.96, 5.15.19, 5.16.5, or 5.17.

3

What systems are affected by CVE-2022-48757?

CVE-2022-48757 affects specific versions of the Linux kernel in various distributions, including Red Hat versions listed in the vulnerability details.

4

What impact does CVE-2022-48757 have on system security?

The impact of CVE-2022-48757 allows users in one net namespace to observe packet types from another net namespace, potentially leading to unintended information disclosure.

5

Is there a known exploit for CVE-2022-48757?

As of now, there are no publicly known exploits specifically targeting CVE-2022-48757.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203