Published: 13/10/2022 Updated: 07/11/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 up to and including 5.19.x prior to 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
fedoraproject fedora 35
fedoraproject fedora 36
fedoraproject fedora 37
debian debian linux 10.0
debian debian linux 11.0

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2021-4037 Christian Brauner reported that the inode_init_owner function for the XFS filesystem in the Linux kernel allows local users to create files with an unintended group ownership al ...

Several security issues were fixed in the Linux kernel ...

Several security issues were fixed in backport-iwlwifi-dkms ...

DescriptionA use-after-free flaw was found in ieee802_11_parse_elems_full in the net/mac80211/utilc function in the multi-BSSID element This issue occurs while parsing in the Linux kernelA use-after-free flaw was found in ieee802_11_parse_elems_full in the net/mac80211/utilc function in the multi-BSSID element This issue occurs whi ...

A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 52 through 51914 could be used by remote attackers who are able to inject WLAN frames to crash the kernel and potentially execute code ...

LTS-102 is being updated in the LTS channel to 10205005194 (Platform Version: 146951730) for most ChromeOS devices Want to know more about Long Term Support? Click hereThis update contains multiple Security fixes, including:1394692 High CVE-2022-4437 Use after free in Mojo IPC1383991 High CVE-2022 ...

AntiFirewalls PoC Prueba de concepto (PoC) correspondiente al reto "POC CIBERSEGURIDAD: EJECUCIÓN DE CÓDIGO REMOTO EN KERNEL DE LINUX A TRAVÉS DE WIFI" de la competición HackForGood de Telefónica en su edición de octubre de 2022, para la participación del equipo "Anti Firewalls" (código "CR005&quo

CWE-416 https://git.kernel.org/pub/scm/linux/kernel/git/wireless/wireless.git/commit/?id=ff05d4b45dd89b922578dac497dcabf57cf771c6 https://bugzilla.suse.com/show_bug.cgi?id=1204051 http://www.openwall.com/lists/oss-security/2022/10/13/5 http://www.openwall.com/lists/oss-security/2022/10/13/2 https://www.debian.org/security/2022/dsa-5257 https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html https://security.netapp.com/advisory/ntap-20230203-0008/http://packetstormsecurity.com/files/171005/Kernel-Live-Patch-Security-Notice-LNS-0091-1.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GGHENNMLCWIQV2LLA56BJNFIUZ7WB4IY/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VNN3VFQPECS6D4PS6ZWD7AFXTOSJDSSR/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2KTU5LFZNQS7YNGE56MT46VHMXL3DD2/https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5257 https://ubuntu.com/security/notices/USN-5728-3

CVE-2022-42719

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect