CVE-2022-48806
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-48806
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48806.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-48806
- Downstream
- Related
- Published
- 2024-07-16T11:43:57Z
- Modified
- 2025-10-08T06:58:56.301906Z
- Summary
- eeprom: ee1004: limit i2c reads to I2C_SMBUS_BLOCK_MAX
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
eeprom: ee1004: limit i2c reads to I2CSMBUSBLOCK_MAX
Commit effa453168a7 ("i2c: i801: Don't silently correct invalid transfer size") revealed that ee1004eepromread() did not properly limit how many bytes to read at once.
In particular, i2csmbusreadi2cblockdataor_emulated() takes the length to read as an u8. If count == 256 after taking into account the offset and page boundary, the cast to u8 overflows. And this is common when user space tries to read the entire EEPROM at once.
To fix it, limit each read to I2CSMBUSBLOCKMAX (32) bytes, already the maximum length i2csmbusreadi2cblockdataoremulated() allows.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/3937c35493ee2847aaefcfa5460e94b7443eef49
- https://git.kernel.org/stable/c/9443ddeb3754e9e382a396b50adc1961301713ce
- https://git.kernel.org/stable/c/9a5f471ae380f9fcb9756d453c12ca1f8595a93c
- https://git.kernel.org/stable/c/a37960df7eac3cc8094bd1ab84864e9e32c91345
- https://git.kernel.org/stable/c/c0689e46be23160d925dca95dfc411f1a0462708
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedaca56c298e2a6d20ab6308e203a8d37f2a7759d3Fixed3937c35493ee2847aaefcfa5460e94b7443eef49
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced25714ad6bf5e98025579fa4c08ff2041a663910cFixeda37960df7eac3cc8094bd1ab84864e9e32c91345
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedbe9313f755a7bfa02230b15731d07074d5255ecbFixed9a5f471ae380f9fcb9756d453c12ca1f8595a93c
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced07d9beb6e3c2e852e884113d6803ea4b3643ae38Fixed9443ddeb3754e9e382a396b50adc1961301713ce
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedeffa453168a7eeb8a562ff4edc1dbf9067360a61Fixedc0689e46be23160d925dca95dfc411f1a0462708
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced74650c34f93044d3ab441235f161f9e1e761e96b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda126a8c3dd51519513141b4fc94fd4813bca2c0f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced202d0e22fe512df0f1cb6253d40ce1058e373247
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7414af7bdad9a9cddb3a765ca98ea207048618c5
Affected versions
v4.*
v4.14.263
v4.14.264
v4.14.265
v4.14.266
v4.14.267
v4.14.268
v4.14.269
v4.14.270
v4.14.271
v4.14.272
v4.14.273
v4.14.274
v4.14.275
v4.14.276
v4.14.277
v4.14.278
v4.14.279
v4.14.280
v4.14.281
v4.14.282
v4.14.283
v4.14.284
v4.14.285
v4.14.286
v4.14.287
v4.14.288
v4.14.289
v4.14.290
v4.14.291
v4.14.292
v4.14.293
v4.14.294
v4.14.295
v4.14.296
v4.14.297
v4.14.298
v4.14.299
v4.14.300
v4.14.301
v4.14.302
v4.14.303
v4.14.304
v4.14.305
v4.14.306
v4.14.307
v4.14.308
v4.14.309
v4.14.310
v4.14.311
v4.14.312
v4.14.313
v4.14.314
v4.14.315
v4.14.316
v4.14.317
v4.14.318
v4.14.319
v4.14.320
v4.14.321
v4.14.322
v4.14.323
v4.14.324
v4.14.325
v4.14.326
v4.14.327
v4.14.328
v4.14.329
v4.14.330
v4.14.331
v4.14.332
v4.14.333
v4.14.334
v4.14.335
v4.14.336
v4.19.226
v4.19.227
v4.19.228
v4.19.229
v4.19.230
v4.19.231
v4.19.232
v4.19.233
v4.19.234
v4.19.235
v4.19.236
v4.19.237
v4.19.238
v4.19.239
v4.19.240
v4.19.241
v4.19.242
v4.19.243
v4.19.244
v4.19.245
v4.19.246
v4.19.247
v4.19.248
v4.19.249
v4.19.250
v4.19.251
v4.19.252
v4.19.253
v4.19.254
v4.19.255
v4.19.256
v4.19.257
v4.19.258
v4.19.259
v4.19.260
v4.19.261
v4.19.262
v4.19.263
v4.19.264
v4.19.265
v4.19.266
v4.19.267
v4.19.268
v4.19.269
v4.19.270
v4.19.271
v4.19.272
v4.19.273
v4.19.274
v4.19.275
v4.19.276
v4.19.277
v4.19.278
v4.19.279
v4.19.280
v4.19.281
v4.19.282
v4.19.283
v4.19.284
v4.19.285
v4.19.286
v4.19.287
v4.19.288
v4.19.289
v4.19.290
v4.19.291
v4.19.292
v4.19.293
v4.19.294
v4.19.295
v4.19.296
v4.19.297
v4.19.298
v4.19.299
v4.19.300
v4.19.301
v4.19.302
v4.19.303
v4.19.304
v4.19.305
v4.19.306
v4.19.307
v4.19.308
v4.19.309
v4.19.310
v4.19.311
v4.19.312
v4.19.313
v4.19.314
v4.19.315
v4.19.316
v4.19.317
v4.19.318
v4.19.319
v4.19.320
v4.19.321
v4.19.322
v4.19.323
v4.19.324
v4.19.325
v4.4.300
v4.4.301
v4.4.302
v4.9.298
v4.9.299
v4.9.300
v4.9.301
v4.9.302
v4.9.303
v4.9.304
v4.9.305
v4.9.306
v4.9.307
v4.9.308
v4.9.309
v4.9.310
v4.9.311
v4.9.312
v4.9.313
v4.9.314
v4.9.315
v4.9.316
v4.9.317
v4.9.318
v4.9.319
v4.9.320
v4.9.321
v4.9.322
v4.9.323
v4.9.324
v4.9.325
v4.9.326
v4.9.327
v4.9.328
v4.9.329
v4.9.330
v4.9.331
v4.9.332
v4.9.333
v4.9.334
v4.9.335
v4.9.336
v4.9.337
v5.*
v5.10.100
v5.10.94
v5.10.95
v5.10.96
v5.10.97
v5.10.98
v5.10.99
v5.15.17
v5.15.18
v5.15.19
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.16
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.16.3
v5.16.4
v5.16.5
v5.16.6
v5.16.7
v5.16.8
v5.16.9
v5.17-rc1
v5.17-rc2
v5.4.174
v5.4.175
v5.4.176
v5.4.177
v5.4.178
v5.4.179
Database specific
{
"vanir_signatures": [
{
"deprecated": false,
"id": "CVE-2022-48806-1ef8b4e4",
"signature_version": "v1",
"digest": {
"length": 384.0,
"function_hash": "246104815126960738715841359518070927821"
},
"signature_type": "Function",
"target": {
"function": "ee1004_eeprom_read",
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c0689e46be23160d925dca95dfc411f1a0462708"
},
{
"deprecated": false,
"id": "CVE-2022-48806-3113d2ae",
"signature_version": "v1",
"digest": {
"line_hashes": [
"308790863237128489533192424232856518440",
"331439320768607183160299757416648404797",
"269061996749632887167051399138636188256"
],
"threshold": 0.9
},
"signature_type": "Line",
"target": {
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a37960df7eac3cc8094bd1ab84864e9e32c91345"
},
{
"deprecated": false,
"id": "CVE-2022-48806-3e9890fa",
"signature_version": "v1",
"digest": {
"line_hashes": [
"114045921644337786425347942582859281515",
"136521539735736354592497660374900361222",
"198919875311466281985846581136710533758"
],
"threshold": 0.9
},
"signature_type": "Line",
"target": {
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9a5f471ae380f9fcb9756d453c12ca1f8595a93c"
},
{
"deprecated": false,
"id": "CVE-2022-48806-416ba379",
"signature_version": "v1",
"digest": {
"line_hashes": [
"114045921644337786425347942582859281515",
"136521539735736354592497660374900361222",
"198919875311466281985846581136710533758"
],
"threshold": 0.9
},
"signature_type": "Line",
"target": {
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c0689e46be23160d925dca95dfc411f1a0462708"
},
{
"deprecated": false,
"id": "CVE-2022-48806-56e97dc8",
"signature_version": "v1",
"digest": {
"length": 402.0,
"function_hash": "127635125562893557345131198417650135339"
},
"signature_type": "Function",
"target": {
"function": "ee1004_eeprom_read",
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3937c35493ee2847aaefcfa5460e94b7443eef49"
},
{
"deprecated": false,
"id": "CVE-2022-48806-6cce1814",
"signature_version": "v1",
"digest": {
"line_hashes": [
"308790863237128489533192424232856518440",
"331439320768607183160299757416648404797",
"269061996749632887167051399138636188256"
],
"threshold": 0.9
},
"signature_type": "Line",
"target": {
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3937c35493ee2847aaefcfa5460e94b7443eef49"
},
{
"deprecated": false,
"id": "CVE-2022-48806-73fa1352",
"signature_version": "v1",
"digest": {
"length": 384.0,
"function_hash": "246104815126960738715841359518070927821"
},
"signature_type": "Function",
"target": {
"function": "ee1004_eeprom_read",
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9a5f471ae380f9fcb9756d453c12ca1f8595a93c"
},
{
"deprecated": false,
"id": "CVE-2022-48806-9378bc27",
"signature_version": "v1",
"digest": {
"length": 402.0,
"function_hash": "127635125562893557345131198417650135339"
},
"signature_type": "Function",
"target": {
"function": "ee1004_eeprom_read",
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a37960df7eac3cc8094bd1ab84864e9e32c91345"
},
{
"deprecated": false,
"id": "CVE-2022-48806-c4b4ac51",
"signature_version": "v1",
"digest": {
"length": 384.0,
"function_hash": "246104815126960738715841359518070927821"
},
"signature_type": "Function",
"target": {
"function": "ee1004_eeprom_read",
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9443ddeb3754e9e382a396b50adc1961301713ce"
},
{
"deprecated": false,
"id": "CVE-2022-48806-f74bd818",
"signature_version": "v1",
"digest": {
"line_hashes": [
"114045921644337786425347942582859281515",
"136521539735736354592497660374900361222",
"198919875311466281985846581136710533758"
],
"threshold": 0.9
},
"signature_type": "Line",
"target": {
"file": "drivers/misc/eeprom/ee1004.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9443ddeb3754e9e382a396b50adc1961301713ce"
}
]
}