CVE-2022-50036
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/sun4i: dsi: Prevent underflow when computing packet sizes
Currently, the packet overhead is subtracted using unsigned arithmetic. With a short sync pulse, this could underflow and wrap around to near the maximal u16 value. Fix this by using signed subtraction. The call to max() will correctly handle any negative numbers that are produced.
Apply the same fix to the other timings, even though those subtractions are less likely to underflow.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 133add5b5ad42b7bb5fcd59d681aef6475d08600 < a1e7908f78f5a7f53f8cd83c7dcdfec974c95f26 | affected |
| Linux | Linux | 133add5b5ad42b7bb5fcd59d681aef6475d08600 < 98e28de472ef248352f04f87e29e634ebb0ec240 | affected |
| Linux | Linux | 133add5b5ad42b7bb5fcd59d681aef6475d08600 < fb837f5b83461624e525727a8f4add14b201147e | affected |
| Linux | Linux | 133add5b5ad42b7bb5fcd59d681aef6475d08600 < 82a1356a933d8443139f8886f11b63c974a09a67 | affected |
| Linux | Linux | 4.18 | affected |
| Linux | Linux | 0 < 4.18 | unaffected |
| Linux | Linux | 5.10.138 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.63 <= 5.15.* | unaffected |
| Linux | Linux | 5.19.4 <= 5.19.* | unaffected |
| Linux | Linux | 6.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/a1e7908f78f5a7f53f8cd83c7dcdfec974c95f26
- https://git.kernel.org/stable/c/98e28de472ef248352f04f87e29e634ebb0ec240
- https://git.kernel.org/stable/c/fb837f5b83461624e525727a8f4add14b201147e
- https://git.kernel.org/stable/c/82a1356a933d8443139f8886f11b63c974a09a67
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.