CVE-2022-49023

EUVD-2022-53907
In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: fix buffer overflow in elem comparison

For vendor elements, the code here assumes that 5 octets
are present without checking. Since the element itself is
already checked to fit, we only need to check the length.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
5.1 ≤
𝑥
< 5.4.226
linuxlinux_kernel
5.5 ≤
𝑥
< 5.10.158
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.82
linuxlinux_kernel
5.16 ≤
𝑥
< 6.0.12
linuxlinux_kernel
6.1:rc1
linuxlinux_kernel
6.1:rc2
linuxlinux_kernel
6.1:rc3
linuxlinux_kernel
6.1:rc4
linuxlinux_kernel
6.1:rc5
linuxlinux_kernel
6.1:rc6
linuxlinux_kernel
6.1:rc7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
sid
6.11.6-1
fixed
trixie
6.11.5-1
fixed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
kernel-64kb
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.72.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.72.1
fixed
kernel-default
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-default-base
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.1.150200.9.109.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1.150300.18.107.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1.150400.24.68.2
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
kernel-docs
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.2
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.2
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-macros
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-obs-build
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-preempt
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
kernel-source
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-source-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.72.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.72.1
fixed
kernel-syms
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-syms-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.72.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.72.1
fixed
kernel-zfcpdump
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
reiserfs-kmp-default
suse enterprise server 15 SP2
5.3.18-150200.24.209.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.59.182.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.24.141.1
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/391cb872553627bdcf236c03ee7d5adb275e37e1
https://git.kernel.org/stable/c/88a6fe3707888bd1893e9741157a7035c4159ab6
https://git.kernel.org/stable/c/9e6b79a3cd17620d467311b30d56f2648f6880aa
https://git.kernel.org/stable/c/9f16b5c82a025cd4c864737409234ddc44fb166a
https://git.kernel.org/stable/c/f5c2ec288a865dbe3706b09bed12302e9f6d696b