CVE-2022-50717
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
nvmet-tcp: add bounds check on Transfer Tag
ttag is used as an index to get cmd in nvmet_tcp_handle_h2c_data_pdu(), add a bounds check to avoid out-of-bounds access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 872d26a391da92ed8f0c0f5cb5fef428067b7f30 < 0d150ccd55dbfad36f55855b40b381884c98456e | affected |
| Linux | Linux | 872d26a391da92ed8f0c0f5cb5fef428067b7f30 < d5bb45f47b37d10f010355686b28c9ebacb361d4 | affected |
| Linux | Linux | 872d26a391da92ed8f0c0f5cb5fef428067b7f30 < ec8adf767e1cfa7031f853b8c71ba1963f07df15 | affected |
| Linux | Linux | 872d26a391da92ed8f0c0f5cb5fef428067b7f30 < fcf82e4553db911d10234ff2390cfd0e2aa854e4 | affected |
| Linux | Linux | 872d26a391da92ed8f0c0f5cb5fef428067b7f30 < 752593d04637ebdc87fd29cba81897f21ae053f0 | affected |
| Linux | Linux | 872d26a391da92ed8f0c0f5cb5fef428067b7f30 < b6a545ffa2c192b1e6da4a7924edac5ba9f4ea2b | affected |
| Linux | Linux | 5.0 | affected |
| Linux | Linux | 0 < 5.0 | unaffected |
| Linux | Linux | 5.4.220 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.150 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.75 <= 5.15.* | unaffected |
| Linux | Linux | 5.19.17 <= 5.19.* | unaffected |
| Linux | Linux | 6.0.3 <= 6.0.* | unaffected |
| Linux | Linux | 6.1 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/0d150ccd55dbfad36f55855b40b381884c98456e
- https://git.kernel.org/stable/c/d5bb45f47b37d10f010355686b28c9ebacb361d4
- https://git.kernel.org/stable/c/ec8adf767e1cfa7031f853b8c71ba1963f07df15
- https://git.kernel.org/stable/c/fcf82e4553db911d10234ff2390cfd0e2aa854e4
- https://git.kernel.org/stable/c/752593d04637ebdc87fd29cba81897f21ae053f0
- https://git.kernel.org/stable/c/b6a545ffa2c192b1e6da4a7924edac5ba9f4ea2b
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.