CVE-2022-41674

HIGH8.1EPSS 0.40%

Published: 10/14/2022Modified: 4/28/2026

Description

An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.

Affected packages (2)

Alpine/linux-ltsfrom 0, < 5.15.74-r0
Debian/linuxfrom 0, < 5.10.149-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.1	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2022-41674
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2022-41674