CVE-2022-1353: 
Linux Kernel vulnerability analysis and mitigation

A vulnerability (CVE-2022-1353) was discovered in the pfkey_register function in net/key/af_key.c in the Linux kernel. This vulnerability was reported on April 29, 2022, and affects Linux kernel versions up to 5.17. The flaw allows a local, unprivileged user to gain access to kernel memory (NVD, CVE).

The vulnerability exists in the PF_KEY subsystem where a local user can receive a netlink message when an IPsec daemon registers with the kernel, potentially including sensitive information. The issue was fixed by adding the __GFP_ZERO flag for compose_sadb_supported in the pfkey_register function (Linux Commit). The vulnerability has been assigned a CVSS v3.1 Base Score of 7.1 (HIGH) with the vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H (NVD).

When successfully exploited, this vulnerability can lead to unauthorized access to kernel memory, resulting in either a system crash or the disclosure of internal kernel information. The impact primarily affects system confidentiality and availability, with no direct impact on integrity (NetApp Advisory).

The vulnerability has been fixed in multiple Linux distributions. Debian has addressed this in version 5.10.113-1 for the stable distribution (bullseye) (Debian Advisory). Red Hat has released fixes through multiple security updates (Red Hat Bugzilla). Users are strongly recommended to upgrade their Linux kernel to the patched versions.