{"id":"ASB-A-213464034","details":"In packet_set_ring of af_packet.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-213464034","CVE-2021-22600","PUB-A-213464034"],"modified":"2026-04-08T15:00:25.631816Z","published":"2022-05-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2022-05-01"},{"type":"FIX","url":"https://android.googlesource.com/kernel/common/+/27fc5a7c6972bd73ac0cc0cf811ec2ecb989014f"}],"affected":[{"package":{"name":":linux_kernel:","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":":0"},{"fixed":":2022-05-05"}]}],"versions":["Kernel"],"ecosystem_specific":{"vanir_signatures":[{"signature_type":"Line","target":{"file":"net/packet/af_packet.c"},"digest":{"line_hashes":["56842754286908954858751883799803078452","333234908957074952355064169353376078837","307263399136416505205360331004710447305","189080069852238399985646265830191533788","240894796540615228570731438920408101816","123630893940014694020920663064138072003"],"threshold":0.9},"signature_version":"v1","id":"ASB-A-213464034-307416a9","deprecated":false,"source":"https://android.googlesource.com/kernel/common/+/27fc5a7c6972bd73ac0cc0cf811ec2ecb989014f"},{"signature_type":"Function","target":{"file":"net/packet/af_packet.c","function":"packet_set_ring"},"digest":{"function_hash":"83320058568458924176981676132243978100","length":3611},"signature_version":"v1","id":"ASB-A-213464034-8c4be790","deprecated":false,"source":"https://android.googlesource.com/kernel/common/+/27fc5a7c6972bd73ac0cc0cf811ec2ecb989014f"}],"types":["EoP"],"spl":"2022-05-05","severity":"Moderate","fixes":["https://android.googlesource.com/kernel/common/+/27fc5a7c6972bd73ac0cc0cf811ec2ecb989014f"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-213464034.json"}}],"schema_version":"1.7.5"}