CVE-2022-47942
- EPSS 3.58%
- Veröffentlicht 23.12.2022 16:15:12
- Zuletzt bearbeitet 15.04.2025 14:15:39
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in set_ntacl_dacl, related to use of SMB2_QUERY_INFO_HE after a malformed SMB2_SET_INFO_HE command.
CVE-2022-4662
- EPSS 0.32%
- Veröffentlicht 22.12.2022 22:15:16
- Zuletzt bearbeitet 09.04.2025 19:15:46
A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.
CVE-2022-47518
- EPSS 0.33%
- Veröffentlicht 18.12.2022 06:15:09
- Zuletzt bearbeitet 17.04.2025 15:15:52
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when copying the li...
CVE-2022-47519
- EPSS 0.3%
- Veröffentlicht 18.12.2022 06:15:09
- Zuletzt bearbeitet 17.04.2025 15:15:52
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_OPER_CHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger an out-of-bounds write when parsing the...
CVE-2022-47520
- EPSS 0.31%
- Veröffentlicht 18.12.2022 06:15:09
- Zuletzt bearbeitet 17.04.2025 15:15:53
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) infor...
CVE-2022-47521
- EPSS 0.34%
- Veröffentlicht 18.12.2022 06:15:09
- Zuletzt bearbeitet 17.04.2025 19:15:55
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_CHANNEL_LIST in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when parsi...
CVE-2022-20566
- EPSS 0.17%
- Veröffentlicht 16.12.2022 16:15:19
- Zuletzt bearbeitet 21.04.2025 14:15:26
In l2cap_chan_put of l2cap_core, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...
CVE-2022-20572
- EPSS 0.49%
- Veröffentlicht 16.12.2022 16:15:19
- Zuletzt bearbeitet 18.04.2025 15:15:46
In verity_target of dm-verity-target.c, there is a possible way to modify read-only files due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ...
CVE-2022-3110
- EPSS 0.22%
- Veröffentlicht 14.12.2022 21:15:12
- Zuletzt bearbeitet 22.04.2025 14:15:19
An issue was discovered in the Linux kernel through 5.16-rc6. _rtw_init_xmit_priv in drivers/staging/r8188eu/core/rtw_xmit.c lacks check of the return value of rtw_alloc_hwxmits() and will cause the null pointer dereference.
CVE-2022-3111
- EPSS 0.21%
- Veröffentlicht 14.12.2022 21:15:12
- Zuletzt bearbeitet 22.04.2025 14:15:19
An issue was discovered in the Linux kernel through 5.16-rc6. free_charger_irq() in drivers/power/supply/wm8350_power.c lacks free of WM8350_IRQ_CHG_FAST_RDY, which is registered in wm8350_init_charger().