USN-5691-1: Linux kernel vulnerabilities

Read Time:57 Second

David Bouman and Billy Jheng Bing Jhong discovered that a race condition
existed in the io_uring subsystem in the Linux kernel, leading to a use-
after-free vulnerability. A local attacker could use this to cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2022-2602)

Sönke Huster discovered that an integer overflow vulnerability existed in
the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A
physically proximate attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2022-41674)

Sönke Huster discovered that the WiFi driver stack in the Linux kernel did
not properly perform reference counting in some situations, leading to a
use-after-free vulnerability. A physically proximate attacker could use
this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2022-42720)

Sönke Huster discovered that the WiFi driver stack in the Linux kernel did
not properly handle BSSID/SSID lists in some situations. A physically
proximate attacker could use this to cause a denial of service (infinite
loop). (CVE-2022-42721)

Cyber Security News

Friday Squid Blogging: Protecting Cephalopods in Medical Research

Russian Company Offers $20M For Non-NATO Mobile Exploits

Microsoft’s Bing AI Faces Malware Threat From Deceptive Ads

Phishing, Smishing Surge Targets US Postal Service

Three men found guilty of laundering $2.5 million in Target gift card tech support scam

ZeroFont trick makes users think that message has been scanned for threats

Building edge computing for manufacturing – the video

Privacy Regulator Orders End to Spreadsheet FOI Responses

Microsoft Breach Exposed 60,000 State Department Emails

USN-5691-1: Linux kernel vulnerabilities

chromium-117.0.5938.132-2.fc39

chromium-117.0.5938.132-2.fc38

chromium-117.0.5938.132-1.el7

chromium-117.0.5938.132-1.el8

chromium-117.0.5938.132-1.fc37

chromium-117.0.5938.132-1.el9