CVE-2022-49790

syzbot is reporting uninitialized value at iforceinitdevice() [1], for commit 6ac0aec6b0a6 ("Input: iforce - allow callers supply data buffer when fetching device IDs") is checking that valid length is shorter than bytes to read. Since iforcegetid_packet() stores valid length when returning 0, the caller needs to check that valid length is longer than or equals to bytes to read.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/9c3874e559580d6c6ec8d449812ac11277724770/cves/2022/49xxx/CVE-2022-49790.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

6ac0aec6b0a651d64eef759fddf17d9145b51033

Fixed

5d53797ce7ce8fb1d95a5bebc5efa9418c4217a3

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

6ac0aec6b0a651d64eef759fddf17d9145b51033

Fixed

24cc679abbf31477d0cc6106ec83c2fbae6b3cdf

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

6ac0aec6b0a651d64eef759fddf17d9145b51033

Fixed

fdd57c20d4408cac3c3c535c120d244e083406c9

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

6ac0aec6b0a651d64eef759fddf17d9145b51033

Fixed

6365569d62a75ddf53fb0c2936c16587a365984c

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

6ac0aec6b0a651d64eef759fddf17d9145b51033

Fixed

b8ebf250997c5fb253582f42bfe98673801ebebd

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.3.0

Fixed

5.4.225

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.156

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.80

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.0.10