retired/CVE-2022-2318


1
2
3
4
5
6
7
8
9
10
11
12

Description: UAF vulnerabilities in rose protocol
References:
 https://www.openwall.com/lists/oss-security/2022/07/03/2
Notes:
 carnil> For 5.18.y fixed as well in 5.18.10.
Bugs:
upstream: released (5.19-rc5) [9cc02ede696272c5271a401e4f27c262359bc2f6]
5.10-upstream-stable: released (5.10.129) [8f74cb27c2b4872fd14bf046201fa7b36a46885e]
4.19-upstream-stable: released (4.19.251) [2661f2d88f40e35791257d73def0319b4560b74b]
sid: released (5.18.14-1)
5.10-bullseye-security: released (5.10.127-2) [bugfix/all/net-rose-fix-uaf-bugs-caused-by-timer-handler.patch]
4.19-buster-security: released (4.19.260-1)