CVE-2022-50540

Summary

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: qcom-adm: fix wrong sizeof config in slave_config

Fix broken slave_config function that uncorrectly compare the peripheral_size with the size of the config pointer instead of the size of the config struct. This cause the crci value to be ignored and cause a kernel panic on any slave that use adm driver.

To fix this, compare to the size of the struct and NOT the size of the pointer.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux03de6b273805b3c552ff158f8688555937375926 < f1dd45a6585a1689e1e8906b3f9e302b9d40c715affected
LinuxLinux03de6b273805b3c552ff158f8688555937375926 < 7490274b41a432824f7df5071ace3df2ab59caa7affected
LinuxLinux03de6b273805b3c552ff158f8688555937375926 < 7c8765308371be30f50c1b5b97618b731514b207affected
LinuxLinux5.17affected
LinuxLinux0 < 5.17unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References