Read Time:57 Second

David Bouman and Billy Jheng Bing Jhong discovered that a race condition
existed in the io_uring subsystem in the Linux kernel, leading to a use-
after-free vulnerability. A local attacker could use this to cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2022-2602)

Sönke Huster discovered that an integer overflow vulnerability existed in
the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A
physically proximate attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2022-41674)

Sönke Huster discovered that the WiFi driver stack in the Linux kernel did
not properly perform reference counting in some situations, leading to a
use-after-free vulnerability. A physically proximate attacker could use
this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2022-42720)

Sönke Huster discovered that the WiFi driver stack in the Linux kernel did
not properly handle BSSID/SSID lists in some situations. A physically
proximate attacker could use this to cause a denial of service (infinite
loop). (CVE-2022-42721)

Read More

More Stories

opendkim-2.11.0-0.36.el9

FEDORA-EPEL-2023-9a05f8b1eb Packages in this update: opendkim-2.11.0-0.36.el9 Update description: Add upstream PR that filters Authentication-Results headers correctly to fix CVE-2022-48521. Read...

firefox-120.0-3.fc37

FEDORA-2023-dce9c4b01f Packages in this update: firefox-120.0-3.fc37 Update description: Fixed freezes on Google Maps Updated to latest upstream (120.0) Read More

Generated by Feedzy