CVE-2022-50627

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc5-wt-ath-656295-gef907406320c-dirty #6

Description The Linux kernel contains a flaw within the ath11k module related to monitor mode bringup. When an interface is activated in monitor mode, a NULL pointer dereference crash can occur during packet type extraction for an SKB. This happens because the extraction is unnecessary for monitor ring packets, which are RAW packets. The issue is addressed by appending flags to skip the extraction process when handling monitor ring packets.

Recommendations Update the Linux kernel to a version newer than 6.1.0-rc5-wt-ath-656295-gef907406320c-dirty #6.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-237CWE-476

Related Identifiers

BDU:2026-01485

CVE-2022-50627

RHSA-2023:6583

RHSA-2023:7077

Affected Products

Centos

Debian

Linux Kernel

Red Hat

Ath11K

CVE-2022-50627

Weakness Enumeration

Related Identifiers

Affected Products

References · 22