CVE-2022-41674 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	Yes
Type	Information disclosure
Description	A buffer overflow flaw was found in the u8 overflow in cfg80211_update_notlisted_nontrans() in net/wireless/scan.c in the Linux kernel’s wifi subcomponent. This flaw allows a remote attacker to inject WLAN frames to crash the system or leak internal kernel information.

Group	Package	Affected	Fixed	Severity	Status
AVG-2803	linux-zen	5.1-1	6.0.1.zen2-1	Critical	Fixed
AVG-2802	linux-lts	5.1-1	5.15.73-3	Critical	Fixed
AVG-2801	linux	5.1-1	6.0.1.arch2-1	Critical	Fixed
AVG-2800	linux-hardened	5.1-1	5.19.15.hardened2-1	Critical	Fixed

Date	Advisory	Group	Package	Severity	Type
14 Oct 2022	ASA-202210-4	AVG-2803	linux-zen	Critical	multiple issues
14 Oct 2022	ASA-202210-3	AVG-2802	linux-lts	Critical	multiple issues
14 Oct 2022	ASA-202210-2	AVG-2801	linux	Critical	multiple issues
14 Oct 2022	ASA-202210-1	AVG-2800	linux-hardened	Critical	multiple issues

References
https://www.openwall.com/lists/oss-security/2022/10/13/2 https://www.openwall.com/lists/oss-security/2022/10/13/5 https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=aebe9f4639b13a1f4e9a6b42cdd2e38c617b442d https://bugzilla.suse.com/show_bug.cgi?id=1203770

References

https://www.openwall.com/lists/oss-security/2022/10/13/2
https://www.openwall.com/lists/oss-security/2022/10/13/5
https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=aebe9f4639b13a1f4e9a6b42cdd2e38c617b442d
https://bugzilla.suse.com/show_bug.cgi?id=1203770

Notes
introduced in v5.1-rc1 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0b8fb8235be8be99a197e8d948fc0a2df8dc261a