← back
CVE-2022-1729

CVE-2022-1729

EPSS 0.3%CWE-366
A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.
Affected products
n/a · linux kernel

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3ac6487e584a1eb54071dbe1212e05b884136704https://security.netapp.com/advisory/ntap-20230214-0006/https://www.openwall.com/lists/oss-security/2022/05/20/2