Search CVE reports
1 – 2 of 2 results
CVE-2022-20385
Medium prioritya function called 'nla_parse', do not check the len of para, it will check nla_type (which can be controlled by userspace) with 'maxtype' (in this case, it is GSCAN_MAX), then it access polciy array 'policy[type]', which OOB...
1 affected package
libnl3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libnl3 | — | Not affected | Not affected | Not affected | Not affected |
CVE-2017-0553
Medium prioritySome fixes available 9 of 10
An elevation of privilege vulnerability in libnl could enable a local malicious application to execute arbitrary code within the context of the Wi-Fi service. This issue is rated as Moderate because it first requires compromising...
2 affected packages
libnl, libnl3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libnl | — | — | — | Not in release | Not in release |
| libnl3 | — | — | — | Fixed | Fixed |