CVE DATABASE  /  CVE-2022-0847

CVE-2022-0847

Linux Kernel Privilege Escalation Vulnerability

Summary

A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.

CVSS 3.1 breakdown

Weakness type (CWE)

• CWE-665

Affected products

Our coverage

• Dirty Frag: Public Root Exploit Hits All Major Linux Distros, Partial Patch Only
• Dirty Frag: CVE-2026-43284 and CVE-2026-43500 Grant Root Access Across All Major Linux Distros

References

• http://packetstormsecurity.com/files/166229/Dirty-Pipe-Linux-Privilege-Escalation.html
• http://packetstormsecurity.com/files/166230/Dirty-Pipe-SUID-Binary-Hijack-Privilege-Escalation.html
• http://packetstormsecurity.com/files/166258/Dirty-Pipe-Local-Privilege-Escalation.html
• http://packetstormsecurity.com/files/176534/Linux-4.20-KTLS-Read-Only-Write.html
• https://bugzilla.redhat.com/show_bug.cgi?id=2060795
• https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf
• https://dirtypipe.cm4all.com/
• https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0015
• https://security.netapp.com/advisory/ntap-20220325-0005/
• https://www.suse.com/support/kb/doc/?id=000020603
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-0847

Data: NIST NVD + CISA KEV. NVD last modified 2025-11-06. Always verify against the vendor advisory before acting.