CVE-2022-29799

NameCVE-2022-29799
DescriptionA vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1010303

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
networkd-dispatcher (PTS)bullseye2.1-2vulnerable
bookworm2.2.3-1fixed
sid, trixie2.2.4-1.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
networkd-dispatchersource(unstable)2.2.3-1unimportant1010303

Notes

https://www.microsoft.com/security/blog/2022/04/26/microsoft-finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/
https://gitlab.com/craftyguy/networkd-dispatcher/-/commit/074ff68f08d64a963a13e3cfc4fb3e3fb9006dfe
https://gitlab.com/craftyguy/networkd-dispatcher/-/commit/2e226ee027bdc8022f0e10470318f89f25dc6133
No security impact in Debian, see #1010303
Search for package or bug name: Reporting problems