CVE-2022-49405

In the Linux kernel, the following vulnerability has been resolved:

staging: r8188eu: prevent ->Ssid overflow in rtw_wx_set_scan()

This code has a check to prevent read overflow but it needs another
check to prevent writing beyond the end of the ->Ssid[] array.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
not-affected
bullseye (security)
5.10.234-1
fixed
bookworm
6.1.123-1
fixed
bookworm (security)
6.1.128-1
fixed
trixie
6.12.12-1
fixed
sid
6.12.16-1
fixed
References
https://git.kernel.org/stable/c/476bfda0be0f9669add92bff604ca78226cf53d1
https://git.kernel.org/stable/c/ac2eab7de458f5e1210ce1237afab40a307075c8
https://git.kernel.org/stable/c/bc10916e890948d8927a5c8c40fb5dc44be5e1b8
https://git.kernel.org/stable/c/c4bd6b72df4f01aa866ceb298466d6d07a6bd525