CVE-2022-50732

Summary

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8192u: Fix use after free in ieee80211_rx()

We cannot dereference the "skb" pointer after calling ieee80211_monitor_rx(), because it is a use after free.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < 9c03db0ec84b7964a11b20706665c99a5fead332affected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < fdc62d31d50e4ce5d8f363fcb8299ba0e00ee6fdaffected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < a0df8d44b555ae09729d6533fd4532977563c7b9affected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < 288ada16a93aab5aa2ebea8190aafdb35b716854affected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < daa8045a991363ccdae5615d170f35aa1135e7a7affected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < b0aaec894a909c88117c8bda6c7c9b26cf7c744baffected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < de174163c0d319ff06d622e79130a0017c8f5a6eaffected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < 73df1172bbcc8d45cd28e3b1a9ca2edb2f9f7ce6affected
LinuxLinux8fc8598e61f6f384f3eaf1d9b09500c12af47b37 < bcc5e2dcf09089b337b76fc1a589f6ff95ca19acaffected
LinuxLinux2.6.33affected
LinuxLinux0 < 2.6.33unaffected
LinuxLinux4.9.337 <= 4.9.*unaffected
LinuxLinux4.14.303 <= 4.14.*unaffected
LinuxLinux4.19.270 <= 4.19.*unaffected
LinuxLinux5.4.229 <= 5.4.*unaffected
LinuxLinux5.10.163 <= 5.10.*unaffected
LinuxLinux5.15.86 <= 5.15.*unaffected
LinuxLinux6.0.16 <= 6.0.*unaffected
LinuxLinux6.1.2 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References