An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when copying the list of operating channels from Wi-Fi management frames. — CVE-2022-47518

Summary

Advisory CVE-2022-47518. An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in… Vendor: Microsoft. Source: MSRC. Threat: high. CVSS 7.8. See the official advisory for details.

What to do

General, cautious steps (verify details in the official source):

• Prioritize patching or mitigation immediately (treat as actively risky).
• Identify affected product versions in your inventory and verify whether you are impacted.
• Apply vendor patches/updates or recommended mitigations as soon as available.
• Read the official advisory for exact affected versions and remediation steps.

Official advisory

Read the official source

Related advisories

• .NET Framework Remote Code Execution Vulnerability CVE-2022-41089
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41886
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41884
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41890
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41891
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41895
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41901
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41907
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41909
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41889
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41888
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-41894