{"id":"CVE-2022-25636","details":"net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. This is related to nf_tables_offload.","modified":"2026-02-04T13:43:53.119486Z","published":"2022-02-24T15:15:31Z","related":["ALSA-2022:1550","MGASA-2022-0092","MGASA-2022-0095","SUSE-SU-2022:0978-1","SUSE-SU-2022:0984-1","SUSE-SU-2022:0998-1","SUSE-SU-2022:1034-1","SUSE-SU-2022:1037-1","SUSE-SU-2022:1038-1","SUSE-SU-2022:1039-1","openSUSE-SU-2022:1037-1","openSUSE-SU-2022:1039-1"],"references":[{"type":"ADVISORY","url":"http://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-LSN-0085-1.html"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2022/02/22/1"},{"type":"ADVISORY","url":"https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf.git/commit/?id=b1a5983f56e371046dcf164f90bfaf704d2b89f6"},{"type":"ADVISORY","url":"https://github.com/Bonfee/CVE-2022-25636"},{"type":"ADVISORY","url":"https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20220325-0002/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5095"},{"type":"ADVISORY","url":"https://www.openwall.com/lists/oss-security/2022/02/21/2"},{"type":"ADVISORY","url":"https://www.oracle.com/security-alerts/cpujul2022.html"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2022/02/22/1"},{"type":"ARTICLE","url":"https://www.openwall.com/lists/oss-security/2022/02/21/2"},{"type":"EVIDENCE","url":"https://github.com/Bonfee/CVE-2022-25636"},{"type":"EVIDENCE","url":"https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/"},{"type":"EVIDENCE","url":"https://www.openwall.com/lists/oss-security/2022/02/21/2"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2022/02/22/1"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf.git/commit/?id=b1a5983f56e371046dcf164f90bfaf704d2b89f6"},{"type":"FIX","url":"https://www.oracle.com/security-alerts/cpujul2022.html"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}