CVE-2022-1215

Опубликовано: 20 апр. 2022

Источник: redhat

CVSS3: 7.8

Описание

A format string vulnerability was found in libinput

Отчет

This flaw is out of support scope for versions of libinput shipped with Red Hat Enterprise Linux 7. The severity was set to Moderate because a potential attacker would need to be physically within bluetooth range of the victim machine, in addition to using an already-paired device.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	libinput	Out of support scope
Red Hat Enterprise Linux 8	libinput	Fixed	RHSA-2022:5331	30.06.2022
Red Hat Enterprise Linux 9	libinput	Fixed	RHSA-2022:5257	30.06.2022

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-134

https://bugzilla.redhat.com/show_bug.cgi?id=2074952libinput: format string vulnerability may lead to privilege escalation

7.8 High

CVSS3

Связанные уязвимости

CVE-2022-1215

CVSS3: 7.8

ubuntu

около 3 лет назад

A format string vulnerability was found in libinput

CVE-2022-1215

CVSS3: 7.8

nvd

около 3 лет назад

A format string vulnerability was found in libinput

CVE-2022-1215

CVSS3: 7.8

msrc

около 3 лет назад

Описание отсутствует

CVE-2022-1215

CVSS3: 7.8

debian

около 3 лет назад

A format string vulnerability was found in libinput

SUSE-SU-2022:1305-1

suse-cvrf

около 3 лет назад

Security update for libinput

7.8 High

CVSS3