CVE-2022-29968

HIGH

Linux kernel <5.17.5 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-29968. PoCs published by jprx.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2022-29968, an uninitialized memory vulnerability in the Linux Kernel's io_uring system. The exploit leverages this flaw to achieve local privilege escalation by manipulating kernel memory structures.

Description

An issue was discovered in the Linux kernel through 5.17.5. io_rw_init_file in fs/io_uring.c lacks initialization of kiocb->private.

Exploits (1)

nomisec WORKING POC 20 stars
by jprx · poc
https://github.com/jprx/CVE-2022-29968

This repository contains a proof-of-concept exploit for CVE-2022-29968, an uninitialized memory vulnerability in the Linux Kernel's io_uring system. The exploit leverages this flaw to achieve local privilege escalation by manipulating kernel memory structures.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Racy
Target: Linux Kernel (versions after 3e08773c3841 and before 32452a3eb8b6)
No auth needed
Prerequisites: SMAP/SMEP disabled or kASLR leak · /dev/sr0 readable by unprivileged user · Specific kernel version range
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20220715-0009/

Scores

CVSS v3 7.8
EPSS 0.0107
EPSS Percentile 60.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-909
Status published
Products (10)
fedoraproject/fedora 34
fedoraproject/fedora 35
fedoraproject/fedora 36
linux/linux_kernel < 5.17.5
netapp/h300s_firmware
netapp/h410c_firmware
netapp/h410s_firmware
netapp/h500s_firmware
netapp/h700s_firmware
netapp/solidfire_\&_hci_management_node
Published May 02, 2022
Tracked Since Feb 18, 2026