Some remotely exploitable kernel WiFi vulnerabilities
Posted Oct 13, 2022 15:48 UTC (Thu)
by fmyhr (subscriber, #14803)
[Link]
Posted Oct 13, 2022 16:11 UTC (Thu)
by johill (subscriber, #25196)
[Link] (10 responses)
It's actually worse than that - you just have to be scanning (though one of the issues requires P2P functionality to be enabled).
So basically it's just
> anybody who uses WiFi
unfortunately.
Posted Oct 13, 2022 17:04 UTC (Thu)
by walters (subscriber, #7396)
[Link] (9 responses)
Has anyone posted an analysis of how old the bugs are? I'm assuming the flaws aren't that new, and that likely means there's a *lot* of potentially vulnerable IoT and other Linux devices out there.
Posted Oct 13, 2022 17:25 UTC (Thu)
by cesarb (subscriber, #6266)
[Link]
Posted Oct 13, 2022 17:47 UTC (Thu)
by eknoes (guest, #158833)
[Link]
Most of the vulnerabilities were introduced in 5.1/5.2.
Posted Oct 14, 2022 0:47 UTC (Fri)
by NYKevin (subscriber, #129325)
[Link] (3 responses)
Posted Oct 14, 2022 6:36 UTC (Fri)
by lkundrak (subscriber, #43452)
[Link]
Posted Oct 15, 2022 9:20 UTC (Sat)
by fabiop (guest, #24661)
[Link] (1 responses)
Posted Oct 16, 2022 16:00 UTC (Sun)
by flussence (guest, #85566)
[Link]
…it's everyone else who uses the same network I have to worry about, but that was already a disaster area.
Posted Oct 14, 2022 6:44 UTC (Fri)
by pabs (subscriber, #43278)
[Link] (2 responses)
Posted Oct 14, 2022 19:06 UTC (Fri)
by lindi (subscriber, #53135)
[Link] (1 responses)
Posted Oct 15, 2022 6:21 UTC (Sat)
by pabs (subscriber, #43278)
[Link]
https://lwn.net/Articles/911080/
Posted Oct 13, 2022 17:30 UTC (Thu)
by pallas (guest, #128204)
[Link]
Posted Oct 14, 2022 11:10 UTC (Fri)
by MattBBaker (guest, #28651)
[Link] (2 responses)
Posted Oct 14, 2022 11:15 UTC (Fri)
by johill (subscriber, #25196)
[Link]
Posted Oct 14, 2022 13:55 UTC (Fri)
by dveeden (subscriber, #120424)
[Link]
Posted Oct 15, 2022 14:56 UTC (Sat)
by scientes (guest, #83068)
[Link] (4 responses)
Posted Oct 15, 2022 15:22 UTC (Sat)
by scientes (guest, #83068)
[Link] (3 responses)
[1] And you sent me that compent JavaSoft guy in San Francisco. The current code I am working on I avoided "synronization points" warning of clang, which he taught me, but is really a stupid rule of the C11 spec, draft n1570.
Posted Oct 16, 2022 2:19 UTC (Sun)
by Cyberax (✭ supporter ✭, #52523)
[Link] (2 responses)
Posted Oct 16, 2022 6:19 UTC (Sun)
by oldtomas (guest, #72579)
[Link]
But then I found this gem: "synronization points". Quotes and all.
An internet search with my favourite search engine turned up empty (it was not easy to convince the thing that I was looking for that and that they not correct the typo). To be thorough, the term "synronization", not in the above context, /can/ be found, so with the right sloppy word embedding model...
It would still be a sleazy AI introducing a typo that can't be found in the intertubes.
Posted Oct 17, 2022 7:18 UTC (Mon)
by eduperez (guest, #11232)
[Link]
Posted Oct 16, 2022 1:56 UTC (Sun)
by scientes (guest, #83068)
[Link]
Posted Oct 19, 2022 15:50 UTC (Wed)
by xose (subscriber, #535)
[Link]
Some remotely exploitable kernel WiFi vulnerabilities
More tongue-in-cheek humor from our esteemed -- albeit often grumpy -- editor?
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
https://www.openwall.com/lists/oss-security/2022/10/13/5
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
https://www.openwall.com/lists/oss-security/2022/10/13/5
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Some remotely exploitable kernel WiFi vulnerabilities
Looking at these patches, I do not think Genode is effected, as the main piece of kernel code they took is the entirety of the iwlwifi driver (and I bought that card and switched to it, because it was the only piece on my Lenovo laptop that didn't match the reference laptop).
Some remotely exploitable kernel WiFi vulnerabilities
Security Advisory 2022-10-17-1 - Multiple issues in mac80211 and cfg80211 (CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721 and CVE-2022-42722)OpenWrt: security advisory and new releases
OpenWrt 21.02.5 fifth service release
OpenWrt 22.03.2 second service release