CVE-2022-42720

Updated: 2024-11-22 02:17:58.002098

Description:

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Already Fixed 2024-01-19 03:07:16
AlmaLinux 9.2 FIPS kernel 5.14.0 7.8 HIGH Already Fixed 2024-01-19 03:06:11
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2023-06-15 09:07:44
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Released CLSA-2024:1728935304 2024-10-25 01:03:09
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2023:1690287378 2023-07-25 09:10:38
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2023:1690294029 2023-07-25 11:06:29
CentOS Stream 8 ELS kernel 4.18.0 7.8 HIGH Already Fixed 2024-10-10 10:43:51
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2023-06-15 09:07:44
CloudLinux 7 ELS kernel 3.10.0 7.8 HIGH In Testing 2024-10-22 10:50:24
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2023-06-15 09:07:44