Wind River Support Network

HomeDefectsLIN1022-2707

Fixed

LIN1022-2707 : Security Advisory - linux - CVE-2022-47520

Created: Dec 18, 2022 Updated: Feb 3, 2023

Resolved Date: Jan 9, 2023

Found In Version: 10.22.33.1

Fix Version: 10.22.33.4

Severity: Standard

Applicable for: Wind River Linux LTS 22

Component/s: Kernel

Description

An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) information element from a Netlink packet.

CREATE(Triage):(User=admin) CVE-2022-47520 (https://nvd.nist.gov/vuln/detail/CVE-2022-47520)

CVEs

CVE-2022-47520