CVE-2022-49503

Feb. 26, 2025, 7:01 a.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix The "rxstatus->rs_keyix" eventually gets passed to test_bit() so we need to ensure that it is within the bitmap. drivers/net/wireless/ath/ath9k/common.c:46 ath9k_cmn_rx_accept() error: passing untrusted data 'rx_stats->rs_keyix' to 'test_bit()'

Product(s) Impacted

Product Versions
Linux kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/0bcb528402cd5e1a6e1833e956fd58a12d509e8e
https://git.kernel.org/stable/c/2326d398ccd41ba6d93b8346532dfa432ab00fee
https://git.kernel.org/stable/c/2dc509305cf956381532792cb8dceef2b1504765
https://git.kernel.org/stable/c/3dad3fed5672828c7fb0465cb66a3d9a70952fa6
https://git.kernel.org/stable/c/461e4c1f199076275f16bf6f3d3e42c6b6c79f33
https://git.kernel.org/stable/c/4bdcf32c965c27f55ccc4ee71c1927131115b0bb
https://git.kernel.org/stable/c/7f6defe0fabc79f29603c6fa3c80e4fe0456a3e9
https://git.kernel.org/stable/c/a048e0c3caa852397b7b50d4c82a0415c05f7ac3
https://git.kernel.org/stable/c/eda518db7db16c360bc84379d90675650daa3048

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-02-26
CVE-2022-49503

Timeline

Published: Feb. 26, 2025, 7:01 a.m.
Last Modified: Feb. 26, 2025, 7:01 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.