UBUNTU-CVE-2022-41674

Description

An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.

CVSS Metrics

• v3.1•HIGH•Score: 8.1CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Affected Systems

• ubuntu•backport-iwlwifi-dkms

  all | < 8324-0ubuntu3~20.04.5 | < 9858-0ubuntu3.1 | all | all | all

• ubuntu•linux

  < 5.4.0-131.147 | < 5.15.0-52.58

• ubuntu•linux-aws

  < 5.4.0-1088.96 | < 5.15.0-1022.26

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.11

  all

• ubuntu•linux-aws-5.13

  all

• ubuntu•linux-aws-5.15

  < 5.15.0-1022.26~20.04.1

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.4

  < 5.4.0-1088.96~18.04.1

• ubuntu•linux-aws-5.8

  all

• ubuntu•linux-aws-6.2

  all

• ubuntu•linux-aws-fips

  < 5.4.0-1088.96+fips1 | all

• ubuntu•linux-azure

  all | < 5.4.0-1094.100 | < 5.15.0-1022.27

• ubuntu•linux-azure-5.11

  all

• ubuntu•linux-azure-5.13

  all

• ubuntu•linux-azure-5.15

  < 5.15.0-1022.27~20.04.1

• ubuntu•linux-azure-5.3

  all

• ubuntu•linux-azure-5.4

  < 5.4.0-1094.100~18.04.1

• ubuntu•linux-azure-5.8

  all

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fde

  < 5.15.0-1024.30.1

• ubuntu•linux-azure-fips

  < 5.4.0-1094.100+fips1 | all

• ubuntu•linux-bluefield

  < 5.4.0-1049.55 | all

• ubuntu•linux-fips

  < 5.4.0-1064.73 | all

• ubuntu•linux-gcp

  all | < 5.4.0-1092.101 | < 5.15.0-1021.28

• ubuntu•linux-gcp-5.11

  all

• ubuntu•linux-gcp-5.13

  all

• ubuntu•linux-gcp-5.15

  < 5.15.0-1021.28~20.04.1

• ubuntu•linux-gcp-5.3

  all

• ubuntu•linux-gcp-5.4

  < 5.4.0-1092.101~18.04.1

• ubuntu•linux-gcp-5.8

  all

• ubuntu•linux-gcp-6.2

  all

• ubuntu•linux-gcp-fips

  < 5.4.0-1092.101+fips1 | all

• ubuntu•linux-gke

  < 5.4.0-1086.93 | < 5.15.0-1019.23

• ubuntu•linux-gke-4.15

  all

• ubuntu•linux-gke-5.15

  < 5.15.0-1019.23~20.04.1

• ubuntu•linux-gke-5.4

  all

• ubuntu•linux-gkeop

  < 5.4.0-1056.60 | < 5.15.0-1007.10

• ubuntu•linux-gkeop-5.15

  < 5.15.0-1007.10~20.04.1

• ubuntu•linux-gkeop-5.4

  all

• ubuntu•linux-hwe

  all

• ubuntu•linux-hwe-5.11

  all

• ubuntu•linux-hwe-5.13

  all

• ubuntu•linux-hwe-5.15

  < 5.15.0-52.58~20.04.1

• ubuntu•linux-hwe-5.4

  < 5.4.0-131.147~18.04.1

• ubuntu•linux-hwe-5.8

  all

• ubuntu•linux-hwe-edge

  all | all

• ubuntu•linux-ibm

  < 5.4.0-1036.41 | < 5.15.0-1017.20

• ubuntu•linux-ibm-5.4

  < 5.4.0-1036.41~18.04.1

• ubuntu•linux-intel-5.13

  all

Showing first 50 affected entries in server-rendered view.

References (14)

• https://ubuntu.com/security/CVE-2022-41674
• https://access.redhat.com/security/cve/CVE-2022-41674
• http://www.openwall.com/lists/oss-security/2022/10/13/2
• https://bugzilla.suse.com/show_bug.cgi?id=1203770
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/log/net/mac80211/scan.c
• https://git.kernel.org/pub/scm/linux/kernel/git/wireless/wireless.git/commit/?id=aebe9f4639b13a1f4e9a6b42cdd2e38c617b442d
• https://www.openwall.com/lists/oss-security/2022/10/13/5
• https://ubuntu.com/security/notices/USN-5691-1
• https://ubuntu.com/security/notices/USN-5692-1
• https://ubuntu.com/security/notices/USN-5693-1
• https://ubuntu.com/security/notices/USN-5700-1
• https://ubuntu.com/security/notices/USN-5708-1
• https://ubuntu.com/security/notices/USN-5752-1
• https://www.cve.org/CVERecord?id=CVE-2022-41674