CVE-2022-49320

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-49320

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49320.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-49320

Downstream

DEBIAN-CVE-2022-49320

SUSE-SU-2025:01982-1

SUSE-SU-2025:01983-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

UBUNTU-CVE-2022-49320

Related

Published

2025-02-26T02:10:45Z

Modified

2025-10-15T21:41:23.454598Z

Summary

dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type

Details

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: zynqmpdma: In struct zynqmpdmachan fix descsize data type

In zynqmpdmaalloc/freechanresources functions there is a potential overflow in the below expressions.

dmaalloccoherent(chan->dev, (2 * chan->descsize * ZYNQMPDMANUMDESCS), &chan->descpoolp, GFP_KERNEL);

dmafreecoherent(chan->dev,(2 * ZYNQMPDMADESCSIZE(chan) * ZYNQMPDMANUMDESCS), chan->descpoolv, chan->descpoolp);

The arguments descsize and ZYNQMPDMANUMDESCS were 32 bit. Though this overflow condition is not observed but it is a potential problem in the case of 32-bit multiplication. Hence fix it by changing the descsize data type to sizet.

In addition to coverity fix it also reuse ZYNQMPDMADESCSIZE macro in dmaalloc_coherent API argument.

Addresses-Coverity: Event overflowbeforewiden.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b0cc417c1637192be658e68a74c8d1568e3d35f6

Fixed

83960276ffc9bf5570d4106490346b61e61be5f3

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b0cc417c1637192be658e68a74c8d1568e3d35f6

Fixed

95a0ba85c1b51b36e909841c02d205cd223ab753

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b0cc417c1637192be658e68a74c8d1568e3d35f6

Fixed

7b5488f4721fed6e121e661e165bab06ae2f8675

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b0cc417c1637192be658e68a74c8d1568e3d35f6

Fixed

4838969e4d95d2bd2995d1605b20d3144fcb3e74

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b0cc417c1637192be658e68a74c8d1568e3d35f6

Fixed

90aefae2e3a770a6909d339f5d8a988c0b0ceaf0

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b0cc417c1637192be658e68a74c8d1568e3d35f6

Fixed

f9a9f43a62a04ec3183fb0da9226c7706eed0115

Affected versions

v4.*

v4.10

v4.10-rc1

v4.10-rc2

v4.10-rc3

v4.10-rc4

v4.10-rc5

v4.10-rc6

v4.10-rc7

v4.10-rc8

v4.11

v4.11-rc1

v4.11-rc2

v4.11-rc3

v4.11-rc4

v4.11-rc5

v4.11-rc6

v4.11-rc7

v4.11-rc8

v4.12

v4.12-rc1

v4.12-rc2

v4.12-rc3

v4.12-rc4

v4.12-rc5

v4.12-rc6

v4.12-rc7

v4.13

v4.13-rc1

v4.13-rc2

v4.13-rc3

v4.13-rc4

v4.13-rc5

v4.13-rc6

v4.13-rc7

v4.14

v4.14-rc1

v4.14-rc2

v4.14-rc3

v4.14-rc4

v4.14-rc5

v4.14-rc6

v4.14-rc7

v4.14-rc8

v4.15

v4.15-rc1

v4.15-rc2

v4.15-rc3

v4.15-rc4

v4.15-rc5

v4.15-rc6

v4.15-rc7

v4.15-rc8

v4.15-rc9

v4.16

v4.16-rc1

v4.16-rc2

v4.16-rc3

v4.16-rc4

v4.16-rc5

v4.16-rc6

v4.16-rc7

v4.17

v4.17-rc1

v4.17-rc2

v4.17-rc3

v4.17-rc4

v4.17-rc5

v4.17-rc6

v4.17-rc7

v4.18

v4.18-rc1

v4.18-rc2

v4.18-rc3

v4.18-rc4

v4.18-rc5

v4.18-rc6

v4.18-rc7

v4.18-rc8

v4.19

v4.19-rc1

v4.19-rc2

v4.19-rc3

v4.19-rc4

v4.19-rc5

v4.19-rc6

v4.19-rc7

v4.19-rc8

v4.20

v4.20-rc1

v4.20-rc2

v4.20-rc3

v4.20-rc4

v4.20-rc5

v4.20-rc6

v4.20-rc7

v4.7

v4.7-rc2

v4.7-rc3

v4.7-rc4

v4.7-rc5

v4.7-rc6

v4.7-rc7

v4.8

v4.8-rc1

v4.8-rc2

v4.8-rc3

v4.8-rc4

v4.8-rc5

v4.8-rc6

v4.8-rc7

v4.8-rc8

v4.9

v4.9-rc1

v4.9-rc2

v4.9-rc3

v4.9-rc4

v4.9-rc5

v4.9-rc6

v4.9-rc7

v4.9-rc8

v5.*

v5.0

v5.0-rc1

v5.0-rc2

v5.0-rc3

v5.0-rc4

v5.0-rc5

v5.0-rc6

v5.0-rc7

v5.0-rc8

v5.1

v5.1-rc1

v5.1-rc2

v5.1-rc3

v5.1-rc4

v5.1-rc5

v5.1-rc6

v5.1-rc7

v5.10

v5.10-rc1

v5.10-rc2

v5.10-rc3

v5.10-rc4

v5.10-rc5

v5.10-rc6

v5.10-rc7

v5.10.1

v5.10.10

v5.10.100

v5.10.101

v5.10.102

v5.10.103

v5.10.104

v5.10.105

v5.10.106

v5.10.107

v5.10.108

v5.10.109

v5.10.11

v5.10.110

v5.10.111

v5.10.112

v5.10.113

v5.10.114

v5.10.115

v5.10.116

v5.10.117

v5.10.118

v5.10.119

v5.10.12

v5.10.120

v5.10.121

v5.10.13

v5.10.14

v5.10.15

v5.10.16

v5.10.17

v5.10.18

v5.10.19

v5.10.2

v5.10.20

v5.10.21

v5.10.22

v5.10.23

v5.10.24

v5.10.25

v5.10.26

v5.10.27

v5.10.28

v5.10.29

v5.10.3

v5.10.30

v5.10.31

v5.10.32

v5.10.33

v5.10.34

v5.10.35

v5.10.36

v5.10.37

v5.10.38

v5.10.39

v5.10.4

v5.10.40

v5.10.41

v5.10.42

v5.10.43

v5.10.44

v5.10.45

v5.10.46

v5.10.47

v5.10.48

v5.10.49

v5.10.5

v5.10.50

v5.10.51

v5.10.52

v5.10.53

v5.10.54

v5.10.55

v5.10.56

v5.10.57

v5.10.58

v5.10.59

v5.10.6

v5.10.60

v5.10.61

v5.10.62

v5.10.63

v5.10.64

v5.10.65

v5.10.66

v5.10.67

v5.10.68

v5.10.69

v5.10.7

v5.10.70

v5.10.71

v5.10.72

v5.10.73

v5.10.74

v5.10.75

v5.10.76

v5.10.77

v5.10.78

v5.10.79

v5.10.8

v5.10.80

v5.10.81

v5.10.82

v5.10.83

v5.10.84

v5.10.85

v5.10.86

v5.10.87

v5.10.88

v5.10.89

v5.10.9

v5.10.90

v5.10.91

v5.10.92

v5.10.93

v5.10.94

v5.10.95

v5.10.96

v5.10.97

v5.10.98

v5.10.99

v5.11

v5.11-rc1

v5.11-rc2

v5.11-rc3

v5.11-rc4

v5.11-rc5

v5.11-rc6

v5.11-rc7

v5.12

v5.12-rc1

v5.12-rc1-dontuse

v5.12-rc2

v5.12-rc3

v5.12-rc4

v5.12-rc5

v5.12-rc6

v5.12-rc7

v5.12-rc8

v5.13

v5.13-rc1

v5.13-rc2

v5.13-rc3

v5.13-rc4

v5.13-rc5

v5.13-rc6

v5.13-rc7

v5.14

v5.14-rc1

v5.14-rc2

v5.14-rc3

v5.14-rc4

v5.14-rc5

v5.14-rc6

v5.14-rc7

v5.15

v5.15-rc1

v5.15-rc2

v5.15-rc3

v5.15-rc4

v5.15-rc5

v5.15-rc6

v5.15-rc7

v5.15.1

v5.15.10

v5.15.11

v5.15.12

v5.15.13

v5.15.14

v5.15.15

v5.15.16

v5.15.17

v5.15.18

v5.15.19

v5.15.2

v5.15.20

v5.15.21

v5.15.22

v5.15.23

v5.15.24

v5.15.25

v5.15.26

v5.15.27

v5.15.28

v5.15.29

v5.15.3

v5.15.30

v5.15.31

v5.15.32

v5.15.33

v5.15.34

v5.15.35

v5.15.36

v5.15.37

v5.15.38

v5.15.39

v5.15.4

v5.15.40

v5.15.41

v5.15.42

v5.15.43

v5.15.44

v5.15.45

v5.15.46

v5.15.5

v5.15.6

v5.15.7

v5.15.8

v5.15.9

v5.16

v5.16-rc1

v5.16-rc2

v5.16-rc3

v5.16-rc4

v5.16-rc5

v5.16-rc6

v5.16-rc7

v5.16-rc8

v5.17

v5.17-rc1

v5.17-rc2

v5.17-rc3

v5.17-rc4

v5.17-rc5

v5.17-rc6

v5.17-rc7

v5.17-rc8

v5.17.1

v5.17.10

v5.17.11

v5.17.12

v5.17.13

v5.17.14

v5.17.2

v5.17.3

v5.17.4

v5.17.5

v5.17.6

v5.17.7

v5.17.8

v5.17.9

v5.18

v5.18-rc1

v5.18-rc2

v5.18-rc3

v5.18-rc4

v5.18-rc5

v5.18-rc6

v5.18-rc7

v5.18.1

v5.18.2

v5.18.3

v5.2

v5.2-rc1

v5.2-rc2

v5.2-rc3

v5.2-rc4

v5.2-rc5

v5.2-rc6

v5.2-rc7

v5.3

v5.3-rc1

v5.3-rc2

v5.3-rc3

v5.3-rc4

v5.3-rc5

v5.3-rc6

v5.3-rc7

v5.3-rc8

v5.4

v5.4-rc1

v5.4-rc2

v5.4-rc3

v5.4-rc4

v5.4-rc5

v5.4-rc6

v5.4-rc7

v5.4-rc8

v5.4.1

v5.4.10

v5.4.100

v5.4.101

v5.4.102

v5.4.103

v5.4.104

v5.4.105

v5.4.106

v5.4.107

v5.4.108

v5.4.109

v5.4.11

v5.4.110

v5.4.111

v5.4.112

v5.4.113

v5.4.114

v5.4.115

v5.4.116

v5.4.117

v5.4.118

v5.4.119

v5.4.12

v5.4.120

v5.4.121

v5.4.122

v5.4.123

v5.4.124

v5.4.125

v5.4.126

v5.4.127

v5.4.128

v5.4.129

v5.4.13

v5.4.130

v5.4.131

v5.4.132

v5.4.133

v5.4.134

v5.4.135

v5.4.136

v5.4.137

v5.4.138

v5.4.139

v5.4.14

v5.4.140

v5.4.141

v5.4.142

v5.4.143

v5.4.144

v5.4.145

v5.4.146

v5.4.147

v5.4.148

v5.4.149

v5.4.15

v5.4.150

v5.4.151

v5.4.152

v5.4.153

v5.4.154

v5.4.155

v5.4.156

v5.4.157

v5.4.158

v5.4.159

v5.4.16

v5.4.160

v5.4.161

v5.4.162

v5.4.163

v5.4.164

v5.4.165

v5.4.166

v5.4.167

v5.4.168

v5.4.169

v5.4.17

v5.4.170

v5.4.171

v5.4.172

v5.4.173

v5.4.174

v5.4.175

v5.4.176

v5.4.177

v5.4.178

v5.4.179

v5.4.18

v5.4.180

v5.4.181

v5.4.182

v5.4.183

v5.4.184

v5.4.185

v5.4.186

v5.4.187

v5.4.188

v5.4.189

v5.4.19

v5.4.190

v5.4.191

v5.4.192

v5.4.193

v5.4.194

v5.4.195

v5.4.196

v5.4.197

v5.4.2

v5.4.20

v5.4.21

v5.4.22

v5.4.23

v5.4.24

v5.4.25

v5.4.26

v5.4.27

v5.4.28

v5.4.29

v5.4.3

v5.4.30

v5.4.31

v5.4.32

v5.4.33

v5.4.34

v5.4.35

v5.4.36

v5.4.37

v5.4.38

v5.4.39

v5.4.4

v5.4.40

v5.4.41

v5.4.42

v5.4.43

v5.4.44

v5.4.45

v5.4.46

v5.4.47

v5.4.48

v5.4.49

v5.4.5

v5.4.50

v5.4.51

v5.4.52

v5.4.53

v5.4.54

v5.4.55

v5.4.56

v5.4.57

v5.4.58

v5.4.59

v5.4.6

v5.4.60

v5.4.61

v5.4.62

v5.4.63

v5.4.64

v5.4.65

v5.4.66

v5.4.67

v5.4.68

v5.4.69

v5.4.7

v5.4.70

v5.4.71

v5.4.72

v5.4.73

v5.4.74

v5.4.75

v5.4.76

v5.4.77

v5.4.78

v5.4.79

v5.4.8

v5.4.80

v5.4.81

v5.4.82

v5.4.83

v5.4.84

v5.4.85

v5.4.86

v5.4.87

v5.4.88

v5.4.89

v5.4.9

v5.4.90

v5.4.91

v5.4.92

v5.4.93

v5.4.94

v5.4.95

v5.4.96

v5.4.97

v5.4.98

v5.4.99

v5.5

v5.5-rc1

v5.5-rc2

v5.5-rc3

v5.5-rc4

v5.5-rc5

v5.5-rc6

v5.5-rc7

v5.6

v5.6-rc1

v5.6-rc2

v5.6-rc3

v5.6-rc4

v5.6-rc5

v5.6-rc6

v5.6-rc7

v5.7

v5.7-rc1

v5.7-rc2

v5.7-rc3

v5.7-rc4

v5.7-rc5

v5.7-rc6

v5.7-rc7

v5.8

v5.8-rc1

v5.8-rc2

v5.8-rc3

v5.8-rc4

v5.8-rc5

v5.8-rc6

v5.8-rc7

v5.9

v5.9-rc1

v5.9-rc2

v5.9-rc3

v5.9-rc4

v5.9-rc5

v5.9-rc6

v5.9-rc7

v5.9-rc8

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.8.0

Fixed

5.4.198

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.122

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.47

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.17.15

Type: ECOSYSTEM
Events: Introduced

5.18.0

Fixed

5.18.4