CVE-2022-42767: 
NixOS vulnerability analysis and mitigation

A vulnerability was identified in the WLAN driver (CVE-2022-42767) that involves a possible missing bounds check. The issue affects various UNISOC chipsets and Android versions 10.0 through 12.0. This vulnerability was disclosed and analyzed by NIST in December 2022 (NVD).

The vulnerability is classified as an Integer Overflow or Wraparound (CWE-190) issue. It received a CVSS v3.1 Base Score of 3.3 (LOW) with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L. This indicates that the vulnerability requires local access, low attack complexity, low privileges, and no user interaction to exploit (NVD).

The vulnerability could lead to local denial of service in WLAN services if successfully exploited. The impact is primarily limited to availability, with no direct impact on confidentiality or integrity (NVD).

The vulnerability affects multiple UNISOC chipsets including S8012, SC7731E, SC9832E, SC9863A, T310, T606, T610, T612, T616, T618, T760, T770, and T820, as well as Android versions 10.0 through 12.0. Users should apply any available security updates from their device manufacturers (NVD).