CVE-2022-50717

Summary

In the Linux kernel, the following vulnerability has been resolved:

nvmet-tcp: add bounds check on Transfer Tag

ttag is used as an index to get cmd in nvmet_tcp_handle_h2c_data_pdu(), add a bounds check to avoid out-of-bounds access.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux872d26a391da92ed8f0c0f5cb5fef428067b7f30 < 0d150ccd55dbfad36f55855b40b381884c98456eaffected
LinuxLinux872d26a391da92ed8f0c0f5cb5fef428067b7f30 < d5bb45f47b37d10f010355686b28c9ebacb361d4affected
LinuxLinux872d26a391da92ed8f0c0f5cb5fef428067b7f30 < ec8adf767e1cfa7031f853b8c71ba1963f07df15affected
LinuxLinux872d26a391da92ed8f0c0f5cb5fef428067b7f30 < fcf82e4553db911d10234ff2390cfd0e2aa854e4affected
LinuxLinux872d26a391da92ed8f0c0f5cb5fef428067b7f30 < 752593d04637ebdc87fd29cba81897f21ae053f0affected
LinuxLinux872d26a391da92ed8f0c0f5cb5fef428067b7f30 < b6a545ffa2c192b1e6da4a7924edac5ba9f4ea2baffected
LinuxLinux5.0affected
LinuxLinux0 < 5.0unaffected
LinuxLinux5.4.220 <= 5.4.*unaffected
LinuxLinux5.10.150 <= 5.10.*unaffected
LinuxLinux5.15.75 <= 5.15.*unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References