In the Linux kernel, the following vulnerability has been resolved:
ath9khtc: fix potential out of bounds access with invalid rxstatus->rskeyix
The "rxstatus->rskeyix" eventually gets passed to testbit() so we need to ensure that it is within the bitmap.
drivers/net/wireless/ath/ath9k/common.c:46 ath9kcmnrxaccept() error: passing untrusted data 'rxstats->rskeyix' to 'testbit()'
{ "vanir_signatures": [ { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2dc509305cf956381532792cb8dceef2b1504765", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-144bd81b" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0bcb528402cd5e1a6e1833e956fd58a12d509e8e", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-28876d0a" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7f6defe0fabc79f29603c6fa3c80e4fe0456a3e9", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-32fd57bb" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3dad3fed5672828c7fb0465cb66a3d9a70952fa6", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-365aa46f" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0bcb528402cd5e1a6e1833e956fd58a12d509e8e", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-4305e239" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2326d398ccd41ba6d93b8346532dfa432ab00fee", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-465f6995" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7f6defe0fabc79f29603c6fa3c80e4fe0456a3e9", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-60f41120" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461e4c1f199076275f16bf6f3d3e42c6b6c79f33", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-6fc08779" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3dad3fed5672828c7fb0465cb66a3d9a70952fa6", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-7c15c730" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461e4c1f199076275f16bf6f3d3e42c6b6c79f33", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-aae380fa" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2326d398ccd41ba6d93b8346532dfa432ab00fee", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-b64a58f7" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a048e0c3caa852397b7b50d4c82a0415c05f7ac3", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-cba73180" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a048e0c3caa852397b7b50d4c82a0415c05f7ac3", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-d4016cf1" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4bdcf32c965c27f55ccc4ee71c1927131115b0bb", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-dd43cb84" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eda518db7db16c360bc84379d90675650daa3048", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-edf94faf" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4bdcf32c965c27f55ccc4ee71c1927131115b0bb", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-eec35c8d" }, { "signature_version": "v1", "target": { "function": "ath9k_rx_prepare", "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2dc509305cf956381532792cb8dceef2b1504765", "deprecated": false, "digest": { "length": 1727.0, "function_hash": "216974899186379625290224577255351513032" }, "id": "CVE-2022-49503-f06adea1" }, { "signature_version": "v1", "target": { "file": "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eda518db7db16c360bc84379d90675650daa3048", "deprecated": false, "digest": { "line_hashes": [ "29176076651416370492195935794328292866", "287612309047953311270183454772785585111", "320985965904451435753303159297916651398" ], "threshold": 0.9 }, "id": "CVE-2022-49503-fe8ca312" } ] }