CVE-2022-50200

Summary

In the Linux kernel, the following vulnerability has been resolved:

selinux: Add boundary check in put_entry()

Just like next_entry(), boundary check is necessary to prevent memory out-of-bound access.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < 2dabe6a872a5744865372eb30ea51e8ccd21305aaffected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < 477722f31ad73aa779154d1d7e00825538389f76affected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < 90bdf50ae70c5571a277b5601e4f5df210831e0aaffected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < adbfdaacde18faf6cd4e490764045375266b3fbdaffected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < 7363a69d8ca8f0086f8e1196c8ddaf0e168614b1affected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < 9605f50157cae00eb299e1189a6d708c84935ad8affected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < dedd558d9765b72c66e5a53948e9f5abc3ece1f6affected
LinuxLinuxcee74f47a6baba0ac457e87687fdcf0abd599f0a < 15ec76fb29be31df2bccb30fc09875274cba2776affected
LinuxLinux2.6.37affected
LinuxLinux0 < 2.6.37unaffected
LinuxLinux4.14.291 <= 4.14.*unaffected
LinuxLinux4.19.256 <= 4.19.*unaffected
LinuxLinux5.4.211 <= 5.4.*unaffected
LinuxLinux5.10.137 <= 5.10.*unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References