CVE-2022-42721
MEDIUM5.5EPSS 0.03%Published: 10/14/2022Modified: 4/28/2026
Description
A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and, in turn, potentially execute code.
Affected packages (2)
- Alpine/linux-ltsfrom 0, < 5.15.74-r0
- Debian/linuxfrom 0, < 5.10.149-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |