CVE-2022-49162

Summary

In the Linux kernel, the following vulnerability has been resolved:

video: fbdev: sm712fb: Fix crash in smtcfb_write()

When the sm712fb driver writes three bytes to the framebuffer, the driver will crash:

BUG: unable to handle page fault for address: ffffc90001ffffff
RIP: 0010:smtcfb_write+0x454/0x5b0
Call Trace:
 vfs_write+0x291/0xd60
 ? do_sys_openat2+0x27d/0x350
 ? __fget_light+0x54/0x340
 ksys_write+0xce/0x190
 do_syscall_64+0x43/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae

Fix it by removing the open-coded endianness fixup-code.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < fb791514acf9070225eed46e1ccbb0aa7aae5da5affected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < 0ec746674296c94137f074309c26d17e644c0498affected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < 1aea36a62f0a0ad67eccc945bac0bd6422ef720faffected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < 3b36c05f68ba32d0dfb63abc9016d6fe9117829faffected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < b1c28577529cdfad40c8242673285f1e1e4c314eaffected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < eae90015d10f0c9a47fc4adccba4cd79dce664e4affected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < aeb635b49530b7d19e140949753409f759ba99beaffected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < 809b8cde86320698661eec677222bc5c5df76176affected
LinuxLinuxd7edf47947f9d921be6ca5fc8e83049124466f98 < 4f01d09b2bbfbcb47b3eb305560a7f4857a32260affected
LinuxLinux2.6.33affected
LinuxLinux0 < 2.6.33unaffected
LinuxLinux4.9.311 <= 4.9.*unaffected
LinuxLinux4.14.276 <= 4.14.*unaffected
LinuxLinux4.19.238 <= 4.19.*unaffected
LinuxLinux5.4.189 <= 5.4.*unaffected
LinuxLinux5.10.110 <= 5.10.*unaffected
LinuxLinux5.15.33 <= 5.15.*unaffected
LinuxLinux5.16.19 <= 5.16.*unaffected
LinuxLinux5.17.2 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

References