#5138 closed enhancement (fixed)
linux-6.0.2
| Reported by: | pierre | Owned by: | lfs-book |
|---|---|---|---|
| Priority: | high | Milestone: | 11.3 |
| Component: | Book | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description
New point version. Looks like there are several CVE's fixed in the WiFi stack: See https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.0.2 (search "CVE") and https://www.openwall.com/lists/oss-security/2022/10/13/5 for details and PoC. Note that all those CVE's need an attacker able to inject forged packets.
Note:
See TracTickets
for help on using tickets.
I've seen a comment that just scanning for networks can expose you (the forged packets are beacon frames), so potentially any use of wifi.