Description
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) information element from a Netlink packet.
Published: 2022-12-18
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-3244-1 linux-5.10 security update
EUVD EUVD EUVD-2022-50281 An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) information element from a Netlink packet.
Ubuntu USN Ubuntu USN USN-5911-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5912-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5913-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5914-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5917-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5929-1 Linux kernel (Raspberry Pi) vulnerabilities
Ubuntu USN Ubuntu USN USN-5934-1 Linux kernel (Raspberry Pi) vulnerabilities
Ubuntu USN Ubuntu USN USN-5935-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-5938-1 Linux kernel (GKE) vulnerabilities
Ubuntu USN Ubuntu USN USN-5939-1 Linux kernel (GCP) vulnerabilities
Ubuntu USN Ubuntu USN USN-5940-1 Linux kernel (Raspberry Pi) vulnerabilities
Ubuntu USN Ubuntu USN USN-5941-1 Linux kernel (KVM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5950-1 Linux kernel (KVM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5951-1 Linux kernel (IBM) vulnerabilities
Ubuntu USN Ubuntu USN USN-5962-1 Linux kernel (Intel IoTG) vulnerabilities
Ubuntu USN Ubuntu USN USN-6000-1 Linux kernel (BlueField) vulnerabilities
History

Thu, 17 Apr 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Debian Debian Linux
Linux Linux Kernel
Netapp H300s H300s Firmware H410c H410c Firmware H410s H410s Firmware H500s H500s Firmware H700s H700s Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-04-17T15:00:13.036Z

Reserved: 2022-12-18T00:00:00.000Z

Link: CVE-2022-47520

cve-icon Vulnrichment

Updated: 2024-08-03T14:55:08.339Z

cve-icon NVD

Status : Modified

Published: 2022-12-18T06:15:09.473

Modified: 2025-04-17T15:15:53.203

Link: CVE-2022-47520

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-12-18T00:00:00Z

Links: CVE-2022-47520 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses