SB20250620103 - Improper error handling in Linux kernel mac80211
Published: June 20, 2025 Updated: June 21, 2025
Security Bulletin ID
SB20250620103
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Improper error handling (CVE-ID: CVE-2022-49942)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the ieee80211_ibss_finish_csa() function in net/mac80211/ibss.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/15bc8966b6d3a5b9bfe4c9facfa02f2b69b1e5f0
- https://git.kernel.org/stable/c/1691a48aef0a82d1754b9853dae7e3f5cacdf70b
- https://git.kernel.org/stable/c/552ba102a6898630a7d16887f29e606d6fabe508
- https://git.kernel.org/stable/c/66689c5c02acd4d76c28498fe220998610aec61e
- https://git.kernel.org/stable/c/864e280cb3a9a0f5212b16ef5057c4e692f7039d
- https://git.kernel.org/stable/c/cdb9a8da9b84800eb15506cd9363cf0cf059e677
- https://git.kernel.org/stable/c/d9eb37db6a28b59a95a3461450ee209654c5f95b
- https://git.kernel.org/stable/c/dd649b49219a0388cc10fc40e4c2ea681566a780
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.142