CVE-2022-0998

Summary

An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a user triggers the vhost_vdpa_config_validate function. This flaw allows a local user to crash or potentially escalate their privileges on the system.

Affected Software

VendorProductVersion RangeStatus
n/aKernelLinux kernel 5.17-rc1affected

Weaknesses

  • CWE-190: CWE-190

ADP Enrichment

CVE Program Container

Additional References

References