CVE-2022-25837
- EPSS 0.35%
- Veröffentlicht 12.12.2022 04:15:09
- Zuletzt bearbeitet 22.04.2025 21:15:42
Bluetooth® Pairing in Bluetooth Core Specification v1.0B through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when at least one device supports BR/EDR Secure Connections pairing and the o...
CVE-2022-4129
- EPSS 0.17%
- Veröffentlicht 28.11.2022 22:15:11
- Zuletzt bearbeitet 14.04.2025 18:15:24
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. A local user could use this flaw to potentially crash the system causing a ...
CVE-2022-45934
- EPSS 0.75%
- Veröffentlicht 27.11.2022 04:15:10
- Zuletzt bearbeitet 29.04.2025 14:15:30
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
- EPSS 0.25%
- Veröffentlicht 27.11.2022 02:15:16
- Zuletzt bearbeitet 21.11.2024 07:29:57
An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.
- EPSS 0.31%
- Veröffentlicht 25.11.2022 04:15:09
- Zuletzt bearbeitet 21.11.2024 07:29:53
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.
- EPSS 0.33%
- Veröffentlicht 25.11.2022 04:15:09
- Zuletzt bearbeitet 29.04.2025 14:15:28
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected.
- EPSS 0.32%
- Veröffentlicht 25.11.2022 04:15:09
- Zuletzt bearbeitet 21.11.2024 07:29:53
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.
CVE-2022-45887
- EPSS 0.29%
- Veröffentlicht 25.11.2022 04:15:09
- Zuletzt bearbeitet 25.04.2025 20:15:37
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call.
CVE-2022-42895
- EPSS 0.4%
- Veröffentlicht 23.11.2022 15:15:10
- Zuletzt bearbeitet 21.11.2024 07:25:32
There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_parse_conf_req function which can be used to leak kernel pointers remotely. We recommend upgrading past commit https://github.com/torvalds/linux/commit/b1a2c...
CVE-2022-3903
- EPSS 0.46%
- Veröffentlicht 14.11.2022 21:15:17
- Zuletzt bearbeitet 30.04.2025 20:15:19
An incorrect read request flaw was found in the Infrared Transceiver USB driver in the Linux kernel. This issue occurs when a user attaches a malicious USB device. A local user could use this flaw to starve the resources, causing denial of service or...