{"id":"CVE-2022-2663","details":"An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured.","modified":"2026-04-16T04:35:17.221778293Z","published":"2022-09-01T21:15:09.653Z","related":["ALSA-2023:2148","ALSA-2023:2458","ALSA-2023:2736","ALSA-2023:2951","CGA-3qj9-973w-fh9g","SUSE-SU-2022:3264-1","SUSE-SU-2022:3288-1","SUSE-SU-2022:3291-1","SUSE-SU-2022:3293-1","SUSE-SU-2022:3408-1","SUSE-SU-2022:3422-1","SUSE-SU-2022:3450-1","SUSE-SU-2022:3584-1","SUSE-SU-2022:3586-1","SUSE-SU-2022:3587-1","SUSE-SU-2022:3609-1","SUSE-SU-2022:3809-1","SUSE-SU-2022:4561-1","SUSE-SU-2022:4611-1","SUSE-SU-2022:4617-1","SUSE-SU-2023:0416-1"],"references":[{"type":"WEB","url":"https://lore.kernel.org/netfilter-devel/20220826045658.100360-1-dgl%40dgl.cx/T/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5257"},{"type":"ADVISORY","url":"https://www.openwall.com/lists/oss-security/2022/08/30/1"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html"},{"type":"EVIDENCE","url":"https://www.youtube.com/watch?v=WIq-YgQuYCA"},{"type":"EVIDENCE","url":"https://dgl.cx/2022/08/nat-again-irc-cve-2022-2663"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2663.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}]}