What is CVE-2022-1729?

CVE-2022-1729 is a vulnerability in Linux Kernel, classified under Race Condition within a Thread. Published 2022-09-01.

Is CVE-2022-1729 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Linux Kernel

CVE-2022-1729

A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary…

EPSS: 0.001 (22.8th percentile) — read the EPSS interpretation.

Affected products

N/a Linux Kernel — versions linux kernel 5.18 rc9

Weakness classification (CWE)

CWE-366 — Race Condition within a Thread

Public proof-of-concept exploits

ARPSyndicate/cvemon
EGI-Federation/SVG-advisories

References

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/
www.openwall.com/lists/oss-security/2022/05/20/2
security.netapp.com/advisory/ntap-20230214-0006/

Frequently asked questions

What is CVE-2022-1729?: CVE-2022-1729 is a vulnerability in Linux Kernel, classified under Race Condition within a Thread. Published 2022-09-01.
Is CVE-2022-1729 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.