CVE-2022-25265

NameCVE-2022-25265
DescriptionIn the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
linux (PTS)bullseye5.10.218-1vulnerable
bullseye (security)5.10.221-1vulnerable
bookworm6.1.94-1vulnerable
bookworm (security)6.1.90-1vulnerable
trixie6.9.8-1vulnerable
sid6.9.9-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
linuxsource(unstable)(unfixed)unimportant

Notes

https://github.com/x0reaxeax/exec-prot-bypass
Not considered a security flaw. If desired because no need for backward compatibility
can be mitigated through a LSM.

Search for package or bug name: Reporting problems