2 matches found
CVE-2022-49865
In the Linux kernel, the following vulnerability has been resolved: ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network When copying a struct ifaddrlblmsg to the network, ifalreserved remained uninitialized, resulting in a 1-byte infoleak: BUG: KMSAN: kernel-network-infoleak...
CVE-2022-49865
The CVE-2022-49865 entry corresponds to a Linux kernel fix for an infoleak in IPv6 addrlabel. Root cause: when copying a struct ifaddrlblmsg to the network, the __ifal_reserved field was left uninitialized, enabling a 1-byte information leak. The patch initializes the reserved field to prevent le...