CVE-2022-50763

The "code_length" value comes from the firmware file. If your firmware is untrusted realistically there is probably very little you can do to protect yourself. Still we try to limit the damage as much as possible. Also Smatch marks any data read from the filesystem as untrusted and prints warnings if it not capped correctly.

The "codelength * 2" can overflow. The roundup(ucode_size, 16) + sizeof() expression can overflow too. Prevent these overflows.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50763.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

d9110b0b01ff1cd02751cd5c2c94e938a8906083

Fixed

7bfa7d67735381715c98091194e81e7685f9b7db

Fixed

12acfa1059ad69aa352ddb2bf23ba1b831aff15f

Fixed

8f5eee162e55175d9dac98b5e9b8da76449d2257

Fixed

e7ff7a46baafd38d7ed45604397e650d61f5db8d

Fixed

caca37cf6c749ff0303f68418cfe7b757a4e0697

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50763.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.7.0

Fixed

5.10.150

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.75

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.19.17

Type: ECOSYSTEM
Events: Introduced

5.20.0

Fixed

6.0.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50763.json"