CVE-2022-50437

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/hdmi: fix memory corruption with too many bridges

Add the missing sanity check on the bridge counter to avoid corrupting data beyond the fixed-sized bridge array in case there are ever more than eight bridges.

Patchwork: https://patchwork.freedesktop.org/patch/502670/

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < a9c1a6991a9b5aa6d0f2cbc9b8c3bf6c4d094dfaaffected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < e8f916b84e4b028ecad6c6472eaad543cc7df806affected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < 3c43f3ec731c233eb84b66199ee76dbf3ec6ecaeaffected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < ed7f1ff87a4afea1bc220d2ff00a7ce8e61f0b53affected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < 08c7375fa27a8ceee028868e03ffb3a0db919d44affected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < b48949ab451eaf1e2c04c272c8a9a96a2b56546faffected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < 9efb45b45ff6254bfd1f1997a06725cb3fc998a5affected
LinuxLinuxa3376e3ec81c5dd0622cbc187db76d2824d31c1c < 4c1294da6aed1f16d47a417dcfe6602833c3c95caffected
LinuxLinux3.12affected
LinuxLinux0 < 3.12unaffected
LinuxLinux4.9.332 <= 4.9.*unaffected
LinuxLinux4.14.298 <= 4.14.*unaffected
LinuxLinux4.19.264 <= 4.19.*unaffected
LinuxLinux5.4.223 <= 5.4.*unaffected
LinuxLinux5.10.153 <= 5.10.*unaffected
LinuxLinux5.15.77 <= 5.15.*unaffected
LinuxLinux6.0.7 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References