CVE-2022-50099
- Source
- https://cve.org/CVERecord?id=CVE-2022-50099
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50099.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-50099
- Downstream
- Related
- Published
- 2025-06-18T11:02:36.018Z
- Modified
- 2026-04-11T12:44:53.460233Z
- Summary
- video: fbdev: arkfb: Check the size of screen before memset_io()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
video: fbdev: arkfb: Check the size of screen before memset_io()
In the function arkfbsetpar(), the value of 'screensize' is calculated by the user input. If the user provides the improper value, the value of 'screensize' may larger than 'info->screen_size', which may cause the following bug:
[ 659.399066] BUG: unable to handle page fault for address: ffffc90003000000 [ 659.399077] #PF: supervisor write access in kernel mode [ 659.399079] #PF: errorcode(0x0002) - not-present page [ 659.399094] RIP: 0010:memsetorig+0x33/0xb0 [ 659.399116] Call Trace: [ 659.399122] arkfbsetpar+0x143f/0x24c0 [ 659.399130] fbsetvar+0x604/0xeb0 [ 659.399161] dofbioctl+0x234/0x670 [ 659.399189] fb_ioctl+0xdd/0x130
Fix the this by checking the value of 'screensize' before memsetio().
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50099.json" }- References
-
- https://git.kernel.org/stable/c/0701df594bc1d7ae55fed407fb65dd90a93f8a9c
- https://git.kernel.org/stable/c/09e733d6ac948e6fda4b16252e44ea46f98fc8b4
- https://git.kernel.org/stable/c/2ce61c39c2a0b8ec82f48e0f7136f0dac105ae75
- https://git.kernel.org/stable/c/352305ea50d682b8e081d826da53caf9e744d7d0
- https://git.kernel.org/stable/c/4a20c5510aa2c031a096a58deb356e91609781c9
- https://git.kernel.org/stable/c/53198b81930e567ad6b879812d88052a1e8ac79e
- https://git.kernel.org/stable/c/8bcb1a06e3091716b7cbebe0e91d1de9895068cd
- https://git.kernel.org/stable/c/96b550971c65d54d64728d8ba973487878a06454
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50099.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50099
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced681e14730c73cc2c71af282c001de6bc71c22f00Fixed4a20c5510aa2c031a096a58deb356e91609781c9Fixed352305ea50d682b8e081d826da53caf9e744d7d0Fixed53198b81930e567ad6b879812d88052a1e8ac79eFixed09e733d6ac948e6fda4b16252e44ea46f98fc8b4Fixed0701df594bc1d7ae55fed407fb65dd90a93f8a9cFixed8bcb1a06e3091716b7cbebe0e91d1de9895068cdFixed2ce61c39c2a0b8ec82f48e0f7136f0dac105ae75Fixed96b550971c65d54d64728d8ba973487878a06454
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.22Fixed4.14.291
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.256
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.211
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.137
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.61
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed5.18.18
- Type
- ECOSYSTEM
- Events
-
Introduced5.19.0Fixed5.19.2