Google Llc Fuchsia vulnerabilities

CVE-2022-0247 [HIGH] CWE-732 CVE-2022-0247: An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write snapshots. An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write snapshots. A local attacker could modify objects in the VMO that they do not have permission to. We recommend upgrading past commit d97c05d2301799ed585620a9c5c739d36e7b5d3d or any of the listed versions.

CVE-2021-22566 [MEDIUM] CWE-275 CVE-2021-22566: An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged context. This can be leveraged by an attacker to bypass executability restrictions of kernel-mode pages from user-mode. An incorrect setting of PXN bits within mmu_flags_to_s1_pte_attr lead to unprivile