CVE-2022-49952
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
misc: fastrpc: fix memory corruption on probe
Add the missing sanity check on the probed-session count to avoid corrupting memory beyond the fixed-size slab-allocated session array when there are more than FASTRPC_MAX_SESSIONS sessions defined in the devicetree.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | f6f9279f2bf0e37e2f1fb119d8832b8568536a04 < ec186b9f4aa2e6444d5308a6cc268aada7007639 | affected |
| Linux | Linux | f6f9279f2bf0e37e2f1fb119d8832b8568536a04 < c99bc901d5eb9fbdd7bd39f625e170ce97390336 | affected |
| Linux | Linux | f6f9279f2bf0e37e2f1fb119d8832b8568536a04 < 0e33b0f322fecd7a92d9dc186535cdf97940a856 | affected |
| Linux | Linux | f6f9279f2bf0e37e2f1fb119d8832b8568536a04 < c0425c2facd9166fa083f90c9f3187ace0c7837a | affected |
| Linux | Linux | f6f9279f2bf0e37e2f1fb119d8832b8568536a04 < 9baa1415d9abdd1e08362ea2dcfadfacee8690b5 | affected |
| Linux | Linux | 5.1 | affected |
| Linux | Linux | 0 < 5.1 | unaffected |
| Linux | Linux | 5.4.213 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.142 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.66 <= 5.15.* | unaffected |
| Linux | Linux | 5.19.8 <= 5.19.* | unaffected |
| Linux | Linux | 6.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/ec186b9f4aa2e6444d5308a6cc268aada7007639
- https://git.kernel.org/stable/c/c99bc901d5eb9fbdd7bd39f625e170ce97390336
- https://git.kernel.org/stable/c/0e33b0f322fecd7a92d9dc186535cdf97940a856
- https://git.kernel.org/stable/c/c0425c2facd9166fa083f90c9f3187ace0c7837a
- https://git.kernel.org/stable/c/9baa1415d9abdd1e08362ea2dcfadfacee8690b5
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.