Wind River Support Network

HomeDefectsLIN1022-1910

Fixed

LIN1022-1910 : Security Advisory - qemu - CVE-2022-3165

Created: Sep 27, 2022 Updated: Jan 15, 2023

Resolved Date: Dec 24, 2022

Found In Version: 10.22.33.1

Fix Version: 10.22.33.4

Severity: Standard

Applicable for: Wind River Linux LTS 22

Component/s: Userspace

Description

QEMU: VNC: integer underflow in vnc_client_cut_text_ext leads to CPU exhaustion

https://bugzilla.redhat.com/show_bug.cgi?id=2129739

CREATE(Triage):(User=admin) CVE-2022-3165 (https://nvd.nist.gov/vuln/detail/CVE-2022-3165)

CVEs

CVE-2022-3165