Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: sm712fb: Fix crash in smtcfb_write() When the sm712fb driver writes three bytes to the framebuffer, the driver will crash: BUG: unable to handle page fault for address: ffffc90001ffffff RIP: 0010:smtcfb_write+0x454/0x5b0 Call Trace: vfs_write+0x291/0xd60 ? do_sys_openat2+0x27d/0x350 ? __fget_light+0x54/0x340 ksys_write+0xce/0x190 do_syscall_64+0x43/0x90 entry_SYSCALL_64_after_hwframe+0x44/0xae Fix it by removing the open-coded endianness fixup-code.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 4.9.311 |
References
- https://git.kernel.org/stable/c/0ec746674296c94137f074309c26d17e644c0498Patch
- https://git.kernel.org/stable/c/1aea36a62f0a0ad67eccc945bac0bd6422ef720fPatch
- https://git.kernel.org/stable/c/3b36c05f68ba32d0dfb63abc9016d6fe9117829fPatch
- https://git.kernel.org/stable/c/4f01d09b2bbfbcb47b3eb305560a7f4857a32260Patch
- https://git.kernel.org/stable/c/809b8cde86320698661eec677222bc5c5df76176Patch
- https://git.kernel.org/stable/c/aeb635b49530b7d19e140949753409f759ba99bePatch
- https://git.kernel.org/stable/c/b1c28577529cdfad40c8242673285f1e1e4c314ePatch
- https://git.kernel.org/stable/c/eae90015d10f0c9a47fc4adccba4cd79dce664e4Patch
- https://git.kernel.org/stable/c/fb791514acf9070225eed46e1ccbb0aa7aae5da5Patch
FAQ
What is CVE-2022-49162?
CVE-2022-49162 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: video: fbdev: sm712fb: Fix crash in smtcfb_write() When the sm712fb driver writes three bytes to the framebuffer, the driver will ...
How severe is CVE-2022-49162?
CVE-2022-49162 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-49162?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.