CVE-2022-49032
- Source
- https://cve.org/CVERecord?id=CVE-2022-49032
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49032.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49032
- Downstream
- Related
- Published
- 2024-10-21T20:06:35.864Z
- Modified
- 2026-04-11T11:56:38.971712Z
- Summary
- iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw
KASAN report out-of-bounds read as follows:
BUG: KASAN: global-out-of-bounds in afe4404readraw+0x2ce/0x380 Read of size 4 at addr ffffffffc00e4658 by task cat/278
Call Trace: afe4404readraw iioreadchannelinfo devattr_show
The buggy address belongs to the variable: afe4404channelleds+0x18/0xffffffffffffe9c0
This issue can be reproduce by singe command:
$ cat /sys/bus/i2c/devices/0-0058/iio\:device0/inintensity6raw
The array size of afe4404channelleds and afe4404channeloffdacs are less than channels, so access with chan->address cause OOB read in afe4404_[read|write]_raw. Fix it by moving access before use them.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49032.json" }- References
-
- https://git.kernel.org/stable/c/113c08030a89aaf406f8a1d4549d758a67c2afba
- https://git.kernel.org/stable/c/3f566b626029ca8598d48e5074e56bb37399ca1b
- https://git.kernel.org/stable/c/5eb114f55b37dbc0487aa9c1913b81bb7837f1c4
- https://git.kernel.org/stable/c/68de7da092f38395dde523f2e5db26eba6c23e28
- https://git.kernel.org/stable/c/d45d9f45e7b1365fd0d9bf14680d6d5082a590d1
- https://git.kernel.org/stable/c/f5575041ec15310bdc50c42b8b22118cc900226e
- https://git.kernel.org/stable/c/f7419fc42afc035f6b29ce713e17dcd2000c833f
- https://git.kernel.org/stable/c/fc92d9e3de0b2d30a3ccc08048a5fad533e4672b
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49032.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49032
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb36e8257641a043764c62240316610c81e36376cFixed68de7da092f38395dde523f2e5db26eba6c23e28Fixed113c08030a89aaf406f8a1d4549d758a67c2afbaFixedf5575041ec15310bdc50c42b8b22118cc900226eFixed3f566b626029ca8598d48e5074e56bb37399ca1bFixed5eb114f55b37dbc0487aa9c1913b81bb7837f1c4Fixedf7419fc42afc035f6b29ce713e17dcd2000c833fFixedd45d9f45e7b1365fd0d9bf14680d6d5082a590d1Fixedfc92d9e3de0b2d30a3ccc08048a5fad533e4672b
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.8.0Fixed4.9.335
- Type
- ECOSYSTEM
- Events
-
Introduced4.10.0Fixed4.14.301
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.268
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.226
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.158
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.82
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.0.12