CVE-2022-0185: Linux Kernel Heap-Based Buffer Overflow Vulnerability.
Linux Kernel Heap-Based Buffer Overflow Vulnerability. Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the Filesystem Context functionality. This allows an attacker to open a filesystem that does not support the Filesystem Context API and ultimately escalate privileges.
- CISA KEV-listed (remediation due 2024-09-11)
- EPSS 1.9% (83.8% percentile)