{"id":"CVE-2022-2959","details":"A race condition was found in the Linux kernel's watch queue due to a missing lock in pipe_resize_ring(). The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the system or escalate their privileges on the system.","aliases":["A-244395411","ASB-A-244395411"],"modified":"2026-03-13T05:48:04.065807Z","published":"2022-08-25T18:15:10.303Z","related":["ALSA-2023:0300","ALSA-2023:0334","SUSE-SU-2022:3288-1","SUSE-SU-2022:3293-1","SUSE-SU-2022:4113-1","SUSE-SU-2022:4617-1"],"references":[{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20230214-0005/"},{"type":"ADVISORY","url":"https://www.zerodayinitiative.com/advisories/ZDI-22-1165/"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/189b0ddc245139af81198d1a3637cac74f96e13a"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"5.8"},{"fixed":"5.10.120"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.15.45"}]},{"events":[{"introduced":"5.16"},{"fixed":"5.17.13"}]},{"events":[{"introduced":"5.18"},{"fixed":"5.18.2"}]}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-2959.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}