CVE-2022-42719

Updated: 2023-11-07 20:28:42.831672

Description:

A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 8.8

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 8.8 HIGH Already Fixed 2024-01-19 13:10:34
AlmaLinux 9.2 FIPS kernel 5.14.0 8.8 HIGH Already Fixed 2024-01-19 13:09:37
CentOS 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2023-12-26 13:11:10
CentOS 7 ELS kernel 3.10.0 8.8 HIGH Released CLSA-2024:1720468480 2024-07-23 17:28:24
CentOS 8.4 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2023:1701963303 2023-12-07 13:11:24
CentOS 8.5 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2023:1701962635 2023-12-07 13:11:25
CloudLinux 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2024-05-08 10:20:02
Oracle Linux 6 ELS kernel 2.6.32 8.8 HIGH Not Vulnerable 2023-12-26 13:11:10
Ubuntu 18.04 ELS linux 4.15.0 8.8 HIGH Not Vulnerable 2023-11-06 02:37:18