In the Linux kernel, the following vulnerability has been resolved:
net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup
ax88179_rx_fixup() contains several out-of-bounds accesses that can be
triggered by a malicious (or defective) USB device, in particular:
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 14.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws-5.4 | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux-aws-hwe | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure | < any | UNKNOWN |
git.kernel.org/linus/57bc3d3ae8c14df3ceb4e17d26ddf9eeab304581 (5.17-rc4)
git.kernel.org/stable/c/1668781ed24da43498799aa4f65714a7de201930
git.kernel.org/stable/c/57bc3d3ae8c14df3ceb4e17d26ddf9eeab304581
git.kernel.org/stable/c/63f0cfb36c1f1964a59ce544156677601e2d8740
git.kernel.org/stable/c/711b6bf3fb052f0a6b5b3205d50e30c0c2980382
git.kernel.org/stable/c/758290defe93a865a2880d10c5d5abd288b64b5d
git.kernel.org/stable/c/9681823f96a811268265f35307072ad80713c274
git.kernel.org/stable/c/a0fd5492ee769029a636f1fb521716b022b1423d
git.kernel.org/stable/c/ffd0393adcdcefab7e131488e10dcfde5e02d6eb
launchpad.net/bugs/cve/CVE-2022-48805
nvd.nist.gov/vuln/detail/CVE-2022-48805
security-tracker.debian.org/tracker/CVE-2022-48805
www.cve.org/CVERecord?id=CVE-2022-48805