Log

AVG-2803 created at 14 Oct 2022 18:24:33
Packages
+ linux-zen
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Medium
Affected
+ 5.1-1
Fixed
+ 6.0.1.zen2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
AVG-2802 created at 14 Oct 2022 18:24:12
Packages
+ linux-lts
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Medium
Affected
+ 5.1-1
Fixed
+ 5.15.73-3
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
AVG-2801 created at 14 Oct 2022 18:23:58
Packages
+ linux
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Medium
Affected
+ 5.1-1
Fixed
+ 6.0.1.arch2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
AVG-2800 edited at 14 Oct 2022 18:23:16
Severity
- Unknown
+ Medium
CVE-2022-42722 edited at 14 Oct 2022 18:23:16
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ In the Linux kernel 5.8 through 5.19.14, local attackers able to inject WLAN frames into the mac80211 stack could cause a NULL pointer dereference denial-of-service attack against the beacon protection of P2P devices.
References
+ https://git.kernel.org/pub/scm/linux/kernel/git/wireless/wireless.git/commit/?id=b2d03cabe2b2e150ff5a381731ea0355459be09f
+ https://bugzilla.suse.com/show_bug.cgi?id=1204125
Notes
AVG-2800 created at 14 Oct 2022 18:21:23
Packages
+ linux-hardened
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Unknown
Affected
+ 5.1-1
Fixed
+ 5.19.15.hardened2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
CVE-2022-42722 created at 14 Oct 2022 18:21:23
AVG-2800 created at 14 Oct 2022 18:21:23
Packages
+ linux-hardened
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Unknown
Affected
+ 5.1-1
Fixed
+ 5.19.15.hardened2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
CVE-2022-42720 created at 14 Oct 2022 18:21:23
AVG-2800 created at 14 Oct 2022 18:21:23
Packages
+ linux-hardened
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Unknown
Affected
+ 5.1-1
Fixed
+ 5.19.15.hardened2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
CVE-2022-42719 created at 14 Oct 2022 18:21:23
AVG-2800 created at 14 Oct 2022 18:21:23
Packages
+ linux-hardened
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Unknown
Affected
+ 5.1-1
Fixed
+ 5.19.15.hardened2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
CVE-2022-42721 created at 14 Oct 2022 18:21:23
AVG-2800 created at 14 Oct 2022 18:21:23
Packages
+ linux-hardened
Issues
+ CVE-2022-41674
+ CVE-2022-42719
+ CVE-2022-42720
+ CVE-2022-42721
+ CVE-2022-42722
Status
+ Fixed
Severity
+ Unknown
Affected
+ 5.1-1
Fixed
+ 5.19.15.hardened2-1
Ticket
Advisory qualified
+ Yes
References
+ https://www.openwall.com/lists/oss-security/2022/10/13/2
+ https://lore.kernel.org/netdev/20221013100522.46346-1-johannes@sipsolutions.net/T/#u
Notes
CVE-2022-41674 created at 14 Oct 2022 18:21:23
ASA-202204-10 deleted at 14 Oct 2022 18:17:57
Workaround
Impact
- An attacker-in-the-middle might be able to cause an incomplete RPZ transfer, resulting in missing policy entries, potentially causing some DNS names and IP addresses to not be properly intercepted.