Vulnerability-Lookup

CVE-2022-49743 (GCVE-0-2022-49743)

Vulnerability from cvelistv5 – Published: 2025-03-27 16:42 – Updated: 2026-01-19 12:17

Title

ovl: Use "buf" flexible array for memcpy() destination

Summary

In the Linux kernel, the following vulnerability has been resolved: ovl: Use "buf" flexible array for memcpy() destination The "buf" flexible array needs to be the memcpy() destination to avoid false positive run-time warning from the recent FORTIFY_SOURCE hardening: memcpy: detected field-spanning write (size 93) of single field "&fh->fb" at fs/overlayfs/export.c:799 (size 21)

Severity ?

No CVSS data available.

Assigner

Linux

References

URL

FKIE_CVE-2022-49743

Vulnerability from fkie_nvd - Published: 2025-03-27 17:15 - Updated: 2026-01-19 13:16

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/012cdef22000f3104e4fa8224ad29fde509b8caf
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63	Patch

Impacted products

	Vendor	Product	Version
	linux	linux_kernel	*
	linux	linux_kernel	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5DF57B24-C3A2-4DF8-B3C1-A14A7C858DFE",
              "versionEndExcluding": "5.15.93",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "535D03F4-DA02-49FE-934E-668827E6407B",
              "versionEndExcluding": "6.1.11",
              "versionStartIncluding": "5.16",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Use \"buf\" flexible array for memcpy() destination\n\nThe \"buf\" flexible array needs to be the memcpy() destination to avoid\nfalse positive run-time warning from the recent FORTIFY_SOURCE\nhardening:\n\n  memcpy: detected field-spanning write (size 93) of single field \"\u0026fh-\u003efb\"\n  at fs/overlayfs/export.c:799 (size 21)"
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ovl: Usar la matriz flexible \"buf\" para el destino de memcpy() La matriz flexible \"buf\" debe ser el destino de memcpy() para evitar una advertencia de tiempo de ejecuci\u00f3n de falsos positivos del reciente endurecimiento de FORTIFY_SOURCE: memcpy: se detect\u00f3 una escritura que abarca el campo (tama\u00f1o 93) de un solo campo \"\u0026amp;fh-\u0026gt;fb\" en fs/overlayfs/export.c:799 (tama\u00f1o 21)"
    }
  ],
  "id": "CVE-2022-49743",
  "lastModified": "2026-01-19T13:16:06.403",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-03-27T17:15:38.967",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/012cdef22000f3104e4fa8224ad29fde509b8caf"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-83H3-PMWM-WJ9J

Vulnerability from github – Published: 2025-03-27 18:31 – Updated: 2026-01-19 15:30

Details

In the Linux kernel, the following vulnerability has been resolved:

ovl: Use "buf" flexible array for memcpy() destination

The "buf" flexible array needs to be the memcpy() destination to avoid false positive run-time warning from the recent FORTIFY_SOURCE hardening:

memcpy: detected field-spanning write (size 93) of single field "&fh->fb" at fs/overlayfs/export.c:799 (size 21)

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-49743"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-03-27T17:15:38Z",
    "severity": "MODERATE"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Use \"buf\" flexible array for memcpy() destination\n\nThe \"buf\" flexible array needs to be the memcpy() destination to avoid\nfalse positive run-time warning from the recent FORTIFY_SOURCE\nhardening:\n\n  memcpy: detected field-spanning write (size 93) of single field \"\u0026fh-\u003efb\"\n  at fs/overlayfs/export.c:799 (size 21)",
  "id": "GHSA-83h3-pmwm-wj9j",
  "modified": "2026-01-19T15:30:32Z",
  "published": "2025-03-27T18:31:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-49743"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/012cdef22000f3104e4fa8224ad29fde509b8caf"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CVE-2022-49743

Vulnerability from fstec - Published: 24.02.2022

Title

Уязвимость компонента ovl ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость компонента ovl ядра операционной системы Linux связана с недостаточной проверкой входных данных. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании

Severity ?


                    
                      AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Vendor

Canonical Ltd., Сообщество свободного программного обеспечения, ООО «Ред Софт», Red Hat Inc.

Software Name

Ubuntu, Debian GNU/Linux, РЕД ОС (запись в едином реестре российских программ №3751), Red Hat Enterprise Linux, Linux

Software Version

18.04 LTS (Ubuntu), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (РЕД ОС), 22.04 LTS (Ubuntu), 9 (Red Hat Enterprise Linux), до 6.2 (Linux), до 5.15.93 (Linux), до 6.1.11 (Linux)

Possible Mitigations

В условиях отсутствия обновлений безопасности от производителя рекомендуется придерживаться "Рекомендаций по безопасной настройке операционных систем LINUX", изложенных в методическом документе ФСТЭК России, утверждённом 25 декабря 2022 года. Использование рекомендаций: Для Linux: https://lore.kernel.org/linux-cve-announce/2025032758-CVE-2022-49743-a049@gregkh/ https://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1 https://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c https://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63 Для Debian GNU/Linux: https://security-tracker.debian.org/tracker/CVE-2022-49743 Для программных продуктов Red Hat Inc.: https://access.redhat.com/security/cve/cve-2022-49743 Для Ubuntu: https://ubuntu.com/security/CVE-2022-49743 Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/

Reference

https://lore.kernel.org/linux-cve-announce/2025032758-CVE-2022-49743-a049@gregkh/ https://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1 https://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c https://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63 https://security-tracker.debian.org/tracker/CVE-2022-49743 https://access.redhat.com/security/cve/cve-2022-49743 https://ubuntu.com/security/CVE-2022-49743 http://repo.red-soft.ru/redos/7.3c/x86_64/updates/

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Canonical Ltd., \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, Red Hat Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "18.04 LTS (Ubuntu), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (\u0420\u0415\u0414 \u041e\u0421), 22.04 LTS (Ubuntu), 9 (Red Hat Enterprise Linux), \u0434\u043e 6.2 (Linux), \u0434\u043e 5.15.93 (Linux), \u0434\u043e 6.1.11 (Linux)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0412 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0442 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0438\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0442\u044c\u0441\u044f \"\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c LINUX\", \u0438\u0437\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0432 \u043c\u0435\u0442\u043e\u0434\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0435 \u0424\u0421\u0422\u042d\u041a \u0420\u043e\u0441\u0441\u0438\u0438, \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0451\u043d\u043d\u043e\u043c 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\n\u0414\u043b\u044f Linux:\nhttps://lore.kernel.org/linux-cve-announce/2025032758-CVE-2022-49743-a049@gregkh/\nhttps://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1\t\nhttps://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c\t\nhttps://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2022-49743\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Red Hat Inc.:\nhttps://access.redhat.com/security/cve/cve-2022-49743\n\n\u0414\u043b\u044f Ubuntu:\nhttps://ubuntu.com/security/CVE-2022-49743 \n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "24.02.2022",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "30.05.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "30.05.2025",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-06212",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2022-49743",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Ubuntu, Debian GNU/Linux, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Red Hat Enterprise Linux, Linux",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Canonical Ltd. Ubuntu 18.04 LTS , Canonical Ltd. Ubuntu 20.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Canonical Ltd. Ubuntu 22.04 LTS , Red Hat Inc. Red Hat Enterprise Linux 9 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u0434\u043e 6.2 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u0434\u043e 5.15.93 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u0434\u043e 6.1.11 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 ovl \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 ovl \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://lore.kernel.org/linux-cve-announce/2025032758-CVE-2022-49743-a049@gregkh/\nhttps://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1\t\nhttps://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c\t\nhttps://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63\nhttps://security-tracker.debian.org/tracker/CVE-2022-49743\nhttps://access.redhat.com/security/cve/cve-2022-49743\nhttps://ubuntu.com/security/CVE-2022-49743 \nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)"
}

CERTFR-2026-AVI-0167

Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian LTS. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Debian	Debian	Debian LTS bullseye versions antérieures à 5.10.249-1
	Debian	Debian	Debian LTS bullseye versions antérieures à 6.1.162-1~deb11u1

References

Title

Publication Time

Tags

Bulletin de sécurité Debian LTS DLA-4476-1	2026-02-10	vendor-advisory
Bulletin de sécurité Debian LTS DLA-4475-1	2026-02-10	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Debian LTS bullseye versions ant\u00e9rieures \u00e0 5.10.249-1",
      "product": {
        "name": "Debian",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    },
    {
      "description": "Debian LTS bullseye versions ant\u00e9rieures \u00e0 6.1.162-1~deb11u1",
      "product": {
        "name": "Debian",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-36903",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36903"
    },
    {
      "name": "CVE-2025-71075",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
    },
    {
      "name": "CVE-2025-71086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
    },
    {
      "name": "CVE-2025-22083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
    },
    {
      "name": "CVE-2025-22107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22107"
    },
    {
      "name": "CVE-2026-23098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23098"
    },
    {
      "name": "CVE-2025-71094",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
    },
    {
      "name": "CVE-2025-68788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
    },
    {
      "name": "CVE-2025-68778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
    },
    {
      "name": "CVE-2026-23054",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
    },
    {
      "name": "CVE-2025-71064",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
    },
    {
      "name": "CVE-2025-68725",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
    },
    {
      "name": "CVE-2025-68795",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
    },
    {
      "name": "CVE-2025-68349",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
    },
    {
      "name": "CVE-2025-38104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38104"
    },
    {
      "name": "CVE-2025-68380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
    },
    {
      "name": "CVE-2025-39702",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39702"
    },
    {
      "name": "CVE-2026-23069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
    },
    {
      "name": "CVE-2023-53421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-53421"
    },
    {
      "name": "CVE-2026-22992",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
    },
    {
      "name": "CVE-2022-49465",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-49465"
    },
    {
      "name": "CVE-2025-71071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
    },
    {
      "name": "CVE-2025-71191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
    },
    {
      "name": "CVE-2025-68728",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
    },
    {
      "name": "CVE-2025-68364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68364"
    },
    {
      "name": "CVE-2025-71087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
    },
    {
      "name": "CVE-2025-40039",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40039"
    },
    {
      "name": "CVE-2025-68746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
    },
    {
      "name": "CVE-2025-68773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
    },
    {
      "name": "CVE-2025-71133",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
    },
    {
      "name": "CVE-2026-23020",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23020"
    },
    {
      "name": "CVE-2025-68796",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68796"
    },
    {
      "name": "CVE-2022-49168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-49168"
    },
    {
      "name": "CVE-2025-68804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
    },
    {
      "name": "CVE-2025-68769",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68769"
    },
    {
      "name": "CVE-2025-71189",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
    },
    {
      "name": "CVE-2025-38408",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38408"
    },
    {
      "name": "CVE-2025-71088",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
    },
    {
      "name": "CVE-2026-23090",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
    },
    {
      "name": "CVE-2022-49711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-49711"
    },
    {
      "name": "CVE-2026-23064",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
    },
    {
      "name": "CVE-2025-38591",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
    },
    {
      "name": "CVE-2025-68806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68806"
    },
    {
      "name": "CVE-2025-71098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
    },
    {
      "name": "CVE-2025-71078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
    },
    {
      "name": "CVE-2025-71083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
    },
    {
      "name": "CVE-2026-23061",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
    },
    {
      "name": "CVE-2025-68813",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
    },
    {
      "name": "CVE-2026-23047",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23047"
    },
    {
      "name": "CVE-2025-22121",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22121"
    },
    {
      "name": "CVE-2025-68365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
    },
    {
      "name": "CVE-2025-71085",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
    },
    {
      "name": "CVE-2025-68344",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68344"
    },
    {
      "name": "CVE-2025-71154",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
    },
    {
      "name": "CVE-2025-68257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
    },
    {
      "name": "CVE-2025-71084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
    },
    {
      "name": "CVE-2026-23049",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
    },
    {
      "name": "CVE-2022-49743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-49743"
    },
    {
      "name": "CVE-2025-68347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
    },
    {
      "name": "CVE-2025-68814",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
    },
    {
      "name": "CVE-2025-68780",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68780"
    },
    {
      "name": "CVE-2025-71081",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
    },
    {
      "name": "CVE-2026-23101",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
    },
    {
      "name": "CVE-2026-23099",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
    },
    {
      "name": "CVE-2025-71121",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71121"
    },
    {
      "name": "CVE-2025-38022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
    },
    {
      "name": "CVE-2026-23085",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
    },
    {
      "name": "CVE-2025-71136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
    },
    {
      "name": "CVE-2025-68354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
    },
    {
      "name": "CVE-2025-68801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
    },
    {
      "name": "CVE-2025-22090",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22090"
    },
    {
      "name": "CVE-2025-68258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
    },
    {
      "name": "CVE-2025-39871",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39871"
    },
    {
      "name": "CVE-2025-37926",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37926"
    },
    {
      "name": "CVE-2025-68291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68291"
    },
    {
      "name": "CVE-2026-22991",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
    },
    {
      "name": "CVE-2025-21946",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
    },
    {
      "name": "CVE-2025-68255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
    },
    {
      "name": "CVE-2026-22980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22980"
    },
    {
      "name": "CVE-2025-71093",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
    },
    {
      "name": "CVE-2025-71102",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71102"
    },
    {
      "name": "CVE-2025-68759",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
    },
    {
      "name": "CVE-2026-23019",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23019"
    },
    {
      "name": "CVE-2025-68733",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
    },
    {
      "name": "CVE-2026-23005",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
    },
    {
      "name": "CVE-2025-68335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
    },
    {
      "name": "CVE-2025-71079",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
    },
    {
      "name": "CVE-2026-23030",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23030"
    },
    {
      "name": "CVE-2026-22997",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
    },
    {
      "name": "CVE-2025-71196",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
    },
    {
      "name": "CVE-2025-68772",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68772"
    },
    {
      "name": "CVE-2026-23078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
    },
    {
      "name": "CVE-2025-68785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
    },
    {
      "name": "CVE-2025-71130",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
    },
    {
      "name": "CVE-2025-68808",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
    },
    {
      "name": "CVE-2025-68223",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
    },
    {
      "name": "CVE-2025-68783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
    },
    {
      "name": "CVE-2025-71147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
    },
    {
      "name": "CVE-2025-68724",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
    },
    {
      "name": "CVE-2026-23103",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
    },
    {
      "name": "CVE-2026-23074",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
    },
    {
      "name": "CVE-2025-71126",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
    },
    {
      "name": "CVE-2025-68786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68786"
    },
    {
      "name": "CVE-2025-71199",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
    },
    {
      "name": "CVE-2024-42079",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-42079"
    },
    {
      "name": "CVE-2025-68797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
    },
    {
      "name": "CVE-2024-49968",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
    },
    {
      "name": "CVE-2025-68259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
    },
    {
      "name": "CVE-2025-71125",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
    },
    {
      "name": "CVE-2026-23006",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
    },
    {
      "name": "CVE-2025-71108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
    },
    {
      "name": "CVE-2025-71069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71069"
    },
    {
      "name": "CVE-2026-22994",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22994"
    },
    {
      "name": "CVE-2026-23083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
    },
    {
      "name": "CVE-2025-68774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
    },
    {
      "name": "CVE-2026-23108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
    },
    {
      "name": "CVE-2025-38119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38119"
    },
    {
      "name": "CVE-2025-71180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71180"
    },
    {
      "name": "CVE-2025-38232",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38232"
    },
    {
      "name": "CVE-2025-71194",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
    },
    {
      "name": "CVE-2025-37830",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37830"
    },
    {
      "name": "CVE-2026-22999",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
    },
    {
      "name": "CVE-2025-71082",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
    },
    {
      "name": "CVE-2026-23068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
    },
    {
      "name": "CVE-2025-68765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
    },
    {
      "name": "CVE-2026-23089",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
    },
    {
      "name": "CVE-2025-71132",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
    },
    {
      "name": "CVE-2026-23071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
    },
    {
      "name": "CVE-2026-23056",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
    },
    {
      "name": "CVE-2025-71077",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
    },
    {
      "name": "CVE-2024-36927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36927"
    },
    {
      "name": "CVE-2023-54321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-54321"
    },
    {
      "name": "CVE-2025-22111",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22111"
    },
    {
      "name": "CVE-2026-23063",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
    },
    {
      "name": "CVE-2026-23073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
    },
    {
      "name": "CVE-2025-71114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
    },
    {
      "name": "CVE-2026-23058",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
    },
    {
      "name": "CVE-2025-71182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
    },
    {
      "name": "CVE-2026-23038",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
    },
    {
      "name": "CVE-2026-22990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
    },
    {
      "name": "CVE-2025-71186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71186"
    },
    {
      "name": "CVE-2025-68821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
    },
    {
      "name": "CVE-2026-23026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
    },
    {
      "name": "CVE-2025-68325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
    },
    {
      "name": "CVE-2025-71190",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
    },
    {
      "name": "CVE-2026-23107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
    },
    {
      "name": "CVE-2025-68332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
    },
    {
      "name": "CVE-2025-71104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
    },
    {
      "name": "CVE-2026-22978",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
    },
    {
      "name": "CVE-2025-38129",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
    },
    {
      "name": "CVE-2026-23037",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
    },
    {
      "name": "CVE-2026-23001",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
    },
    {
      "name": "CVE-2025-68367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
    },
    {
      "name": "CVE-2025-68820",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
    },
    {
      "name": "CVE-2023-54207",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
    },
    {
      "name": "CVE-2025-68740",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
    },
    {
      "name": "CVE-2025-68742",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
    },
    {
      "name": "CVE-2026-23025",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23025"
    },
    {
      "name": "CVE-2024-46786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-46786"
    },
    {
      "name": "CVE-2025-68816",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
    },
    {
      "name": "CVE-2025-68256",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
    },
    {
      "name": "CVE-2025-68777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
    },
    {
      "name": "CVE-2025-68254",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
    },
    {
      "name": "CVE-2025-38556",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38556"
    },
    {
      "name": "CVE-2026-22982",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
    },
    {
      "name": "CVE-2025-71118",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
    },
    {
      "name": "CVE-2025-71150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71150"
    },
    {
      "name": "CVE-2025-39721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39721"
    },
    {
      "name": "CVE-2026-23091",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
    },
    {
      "name": "CVE-2025-38718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38718"
    },
    {
      "name": "CVE-2025-71192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
    },
    {
      "name": "CVE-2025-68776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
    },
    {
      "name": "CVE-2025-71066",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
    },
    {
      "name": "CVE-2025-68799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
    },
    {
      "name": "CVE-2025-68345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
    },
    {
      "name": "CVE-2025-71097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
    },
    {
      "name": "CVE-2025-71111",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
    },
    {
      "name": "CVE-2026-23087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23087"
    },
    {
      "name": "CVE-2025-71185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
    },
    {
      "name": "CVE-2026-23096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
    },
    {
      "name": "CVE-2025-68337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
    },
    {
      "name": "CVE-2025-71131",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
    },
    {
      "name": "CVE-2025-40149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
    },
    {
      "name": "CVE-2025-40164",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
    },
    {
      "name": "CVE-2025-71116",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
    },
    {
      "name": "CVE-2023-52658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
    },
    {
      "name": "CVE-2025-68362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
    },
    {
      "name": "CVE-2025-71162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
    },
    {
      "name": "CVE-2026-23075",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23075"
    },
    {
      "name": "CVE-2025-68803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
    },
    {
      "name": "CVE-2026-23105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
    },
    {
      "name": "CVE-2026-22976",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
    },
    {
      "name": "CVE-2025-68753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
    },
    {
      "name": "CVE-2025-68781",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68781"
    },
    {
      "name": "CVE-2025-68369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68369"
    },
    {
      "name": "CVE-2025-71112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
    },
    {
      "name": "CVE-2023-54285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
    },
    {
      "name": "CVE-2026-23086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
    },
    {
      "name": "CVE-2025-22022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22022"
    },
    {
      "name": "CVE-2025-68818",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
    },
    {
      "name": "CVE-2025-38125",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38125"
    },
    {
      "name": "CVE-2025-68366",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
    },
    {
      "name": "CVE-2025-68815",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
    },
    {
      "name": "CVE-2025-40215",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
    },
    {
      "name": "CVE-2026-23095",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
    },
    {
      "name": "CVE-2025-68346",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
    },
    {
      "name": "CVE-2025-71163",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
    },
    {
      "name": "CVE-2025-71096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
    },
    {
      "name": "CVE-2025-71095",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
    },
    {
      "name": "CVE-2025-71105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71105"
    },
    {
      "name": "CVE-2025-68266",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68266"
    },
    {
      "name": "CVE-2025-68771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
    },
    {
      "name": "CVE-2025-68363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
    },
    {
      "name": "CVE-2026-22984",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
    },
    {
      "name": "CVE-2025-68757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
    },
    {
      "name": "CVE-2026-23033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
    },
    {
      "name": "CVE-2026-22977",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
    },
    {
      "name": "CVE-2026-23003",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
    },
    {
      "name": "CVE-2025-68766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
    },
    {
      "name": "CVE-2026-23076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
    },
    {
      "name": "CVE-2025-71123",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
    },
    {
      "name": "CVE-2025-68372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
    },
    {
      "name": "CVE-2026-23010",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
    },
    {
      "name": "CVE-2025-71137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
    },
    {
      "name": "CVE-2026-23084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
    },
    {
      "name": "CVE-2026-22979",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
    },
    {
      "name": "CVE-2026-23011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
    },
    {
      "name": "CVE-2026-23110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
    },
    {
      "name": "CVE-2025-71120",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
    },
    {
      "name": "CVE-2026-23060",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
    },
    {
      "name": "CVE-2025-68282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68282"
    },
    {
      "name": "CVE-2025-68817",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68817"
    },
    {
      "name": "CVE-2025-71119",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
    },
    {
      "name": "CVE-2025-68787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68787"
    },
    {
      "name": "CVE-2025-68782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68782"
    },
    {
      "name": "CVE-2025-71197",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
    },
    {
      "name": "CVE-2025-68758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
    },
    {
      "name": "CVE-2026-23031",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23031"
    },
    {
      "name": "CVE-2025-71113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
    },
    {
      "name": "CVE-2025-71127",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71127"
    },
    {
      "name": "CVE-2026-23102",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
    },
    {
      "name": "CVE-2026-22998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
    },
    {
      "name": "CVE-2025-68340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
    },
    {
      "name": "CVE-2025-40110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
    },
    {
      "name": "CVE-2025-68798",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
    },
    {
      "name": "CVE-2025-68336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68336"
    },
    {
      "name": "CVE-2023-52975",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52975"
    },
    {
      "name": "CVE-2026-23097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23097"
    },
    {
      "name": "CVE-2025-68819",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
    },
    {
      "name": "CVE-2026-23021",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
    },
    {
      "name": "CVE-2025-68732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
    },
    {
      "name": "CVE-2026-23093",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23093"
    },
    {
      "name": "CVE-2025-71183",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
    },
    {
      "name": "CVE-2025-68371",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68371"
    },
    {
      "name": "CVE-2025-68211",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
    },
    {
      "name": "CVE-2025-71091",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
    },
    {
      "name": "CVE-2025-68263",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68263"
    },
    {
      "name": "CVE-2025-68800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
    },
    {
      "name": "CVE-2025-68261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
    },
    {
      "name": "CVE-2022-48744",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48744"
    },
    {
      "name": "CVE-2025-71149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
    },
    {
      "name": "CVE-2025-68767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
    },
    {
      "name": "CVE-2025-68727",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
    },
    {
      "name": "CVE-2026-23080",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
    },
    {
      "name": "CVE-2025-38361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
    },
    {
      "name": "CVE-2025-68264",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
    },
    {
      "name": "CVE-2025-68764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
    }
  ],
  "initial_release_date": "2026-02-13T00:00:00",
  "last_revision_date": "2026-02-13T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0167",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-02-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian LTS. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian LTS",
  "vendor_advisories": [
    {
      "published_at": "2026-02-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Debian LTS DLA-4476-1",
      "url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00017.html"
    },
    {
      "published_at": "2026-02-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Debian LTS DLA-4475-1",
      "url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00016.html"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-49743 (GCVE-0-2022-49743)

FKIE_CVE-2022-49743

GHSA-83H3-PMWM-WJ9J

CVE-2022-49743

CERTFR-2026-AVI-0167

Solutions

Tags

Sightings

Nomenclature