CVE-2022-50235

Summary

In the Linux kernel, the following vulnerability has been resolved:

NFSD: Protect against send buffer overflow in NFSv2 READDIR

Restore the previous limit on the @count argument to prevent a buffer overflow attack.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9e291a6a28d32545ed2fd959a8165144d1724df1 < 0e57d696f60dee6117a8ace0cac7c5761d375277affected
LinuxLinuxeabc0aab98e5218ceecd82069b0d6fdfff5ee885 < dc7f225090c29a5f3b9419b1af32846a201555e7affected
LinuxLinux53b1119a6e5028b125f431a0116ba73510d82a72 < c2a878095b5c6f04f90553a3c45872f990dab14eaffected
LinuxLinux53b1119a6e5028b125f431a0116ba73510d82a72 < f59c74df82f6ac9d2ea4e01aa3ae7c6c4481652daffected
LinuxLinux53b1119a6e5028b125f431a0116ba73510d82a72 < 00b4492686e0497fdb924a9d4c8f6f99377e176caffected
LinuxLinux5.15.12 < 5.15.75affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux5.15.75 <= 5.15.*unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References