2290835 – (CVE-2022-4968) CVE-2022-4968 netplan: leaks the private key of wireguard to local users

Bug 2290835 (CVE-2022-4968) - CVE-2022-4968 netplan: leaks the private key of wireguard to local users

Summary: CVE-2022-4968 netplan: leaks the private key of wireguard to local users

Keywords:
Status:	NEW
Alias:	CVE-2022-4968
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2290836 2290837 2290838
Blocks:
TreeView+	depends on / blocked

Reported:	2024-06-07 06:37 UTC by Rohit Keshri
Modified:	2024-06-07 06:40 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Rohit Keshri 2024-06-07 06:37:11 UTC

netplan leaks the private key of wireguard to local users. A security fix will be released soon.

https://bugs.launchpad.net/netplan/+bug/1987842
https://bugs.launchpad.net/ubuntu/+source/netplan.io/+bug/2065738
https://www.cve.org/CVERecord?id=CVE-2022-4968

Comment 1 Rohit Keshri 2024-06-07 06:37:33 UTC

Created netplan tracking bugs for this issue:

Affects: epel-8 [bug 2290836]
Affects: fedora-all [bug 2290837]

Comment 2 Rohit Keshri 2024-06-07 06:37:42 UTC

Created netplan tracking bugs for this issue:

Affects: epel-8 [bug 2290838]

Note You need to log in before you can comment on or make changes to this bug.