CVE-2022-1975
MEDIUMLinux Kernel - Denial of Service via NFC Netlink Sleep-in-Atomic Bug
Title source: llmDescription
There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space.
References (1)
Core 1
Core References
Patch, Third Party Advisory x_refsource_misc
https://github.com/torvalds/linux/commit/4071bf121d59944d5cd2238de0642f3d7995a997
Scores
CVSS v3
5.5
EPSS
0.0023
EPSS Percentile
13.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-248
Status
published
Products (1)
linux/linux_kernel
5.18 rc6
Published
Aug 31, 2022
Tracked Since
Feb 18, 2026