A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HFedora Project Fedora
OSFedoraproject35Linux Kernel
OSLinux5.8 – 5.10.102 (bez)5.15 – 5.15.25 (bez)5.16 – 5.16.11 (bez)Netapp H300e
HWNetappwszystkie wersjeNetapp H300e Firmware
OSNetappwszystkie wersjeNetapp H300s
HWNetappwszystkie wersjeNetapp H300s Firmware
OSNetappwszystkie wersjeNetapp H410c
HWNetappwszystkie wersjeNetapp H410c Firmware
OSNetappwszystkie wersjeNetapp H410s
HWNetappwszystkie wersjeNetapp H410s Firmware
OSNetappwszystkie wersjeNetapp H500e
HWNetappwszystkie wersjeNetapp H500e Firmware
OSNetappwszystkie wersjeNetapp H500s
HWNetappwszystkie wersjeNetapp H500s Firmware
OSNetappwszystkie wersjeNetapp H700e
HWNetappwszystkie wersjeNetapp H700e Firmware
OSNetappwszystkie wersjeNetapp H700s
HWNetappwszystkie wersjeNetapp H700s Firmware
OSNetappwszystkie wersjeOvirt Engine
APPOvirt4.4.10.2Red Hat Codeready Linux Builder
APPRedhatwszystkie wersjeRed Hat Enterprise Linux
OSRedhat8.0Red Hat Enterprise Linux Eus
OSRedhat8.28.4Red Hat Enterprise Linux For IBM Z Systems
OSRedhat8.0Red Hat Enterprise Linux For IBM Z Systems Eus
OSRedhat8.28.4Red Hat Enterprise Linux For Power Little Endian
OSRedhat8.0Red Hat Enterprise Linux For Power Little Endian Eus
OSRedhat8.28.4Red Hat Enterprise Linux For Real Time
OSRedhat8Red Hat Enterprise Linux For Real Time For Nfv
OSRedhat8Red Hat Enterprise Linux For Real Time For Nfv Tus
OSRedhat8.28.4Red Hat Enterprise Linux For Real Time Tus
OSRedhat8.28.4
CISA KEV — detailsi
- Vendori
- Linux
- Producti
- Kernel
- Added to KEVi
- April 25, 2022
- Remediation deadline (US Federal)i
- May 16, 2022(overdue)
Apply updates per vendor instructions.
Linux kernel contains an improper initialization vulnerability where an unprivileged local user could escalate their privileges on the system. This vulnerability has the moniker of "Dirty Pipe."
Related vulnerabilities
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
AMI MegaRAC SPx — zdalne ominięcie uwierzytelnienia w interfejsie Redfish BMC
PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit