MGASA-2022-0026

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2022-0185

Published: 21 Jan 2022, 21:41

Last modified:16 Apr 2026, 04:24

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

21 Jan 2022, 21:41

Published

Vulnerability first disclosed

16 Apr 2026, 04:24

Last Modified

Vulnerability information updated

Description

Updated kernel packages fix security vulnerability This kernel update is based on upstream 5.15.16 and fixes at least the following security issue: William Liu and Jamie Hill-Daniel discovered that the file system context functionality in the Linux kernel contained an integer underflow vulnerability, leading to an out-of-bounds write. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code (CVE-2022-0185).

Affected Systems

mageia•kernel
< 5.15.16-1.mga8
mageia•kmod-virtualbox
< 6.1.30-1.14.mga8
mageia•kmod-xtables-addons
< 3.18-1.48.mga8

MGASA-2022-0026

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)