CVE-2022-50814Linux vulnerability

7 documents6 sources
Severity
N/A
No vector
EPSS
0.0%
top 92.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr KASAN reported this Bug: [17619.659757] BUG: KASAN: global-out-of-bounds in param_get_int+0x34/0x60 [17619.673193] Read of size 4 at addr fffff01332d7ed00 by task read_all/1507958 ... [17619.698934] The buggy address belongs to the variable: [17619.708371] sgl_sge_nr+0x0/0xffffffffffffa300 [hisi_zip] There is a mismatch in hisi_zip when get/set the variable sgl_sge_n

Affected Packages4 packages

Linuxlinux/linux_kernel5.5.05.10.150+3
Debianlinux/linux_kernel< 5.10.158-1+3
CVEListV5linux/linuxf081fda293ffba54216a7dab66faba7275475006d88b88514ef28515ccfa1f1787c2aedef75a79dd+5
debiandebian/linux< linux 6.0.3-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2022-50814: In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr KASAN reported this Bug2025-12-30
OSV
crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr2025-12-30
GHSA
GHSA-76g7-xjv5-wpj8: In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr KASAN reported this B2025-12-30

📋Vendor Advisories

2
Red Hat
kernel: crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr2025-12-30
Debian
CVE-2022-50814: linux - In the Linux kernel, the following vulnerability has been resolved: crypto: his...2022

🕵️Threat Intelligence

1
Wiz
CVE-2022-50814 Impact, Exploitability, and Mitigation Steps | Wiz