| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025100706-CVE-2022-50526-abd9@gregkh> Date: Tue, 7 Oct 2025 17:19:13 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2022-50526: drm/msm/dp: fix memory corruption with too many bridges From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix memory corruption with too many bridges Add the missing sanity check on the bridge counter to avoid corrupting data beyond the fixed-sized bridge array in case there are ever more than eight bridges. Patchwork: https://patchwork.freedesktop.org/patch/502664/ The Linux kernel CVE team has assigned CVE-2022-50526 to this issue. Affected and fixed versions =========================== Issue introduced in 5.17 with commit 8a3b4c17f863cde8e8743edd8faffe916c49b960 and fixed in 6.0.7 with commit b312fcab461bd9484c61409007a6fe059f9c2074 Issue introduced in 5.17 with commit 8a3b4c17f863cde8e8743edd8faffe916c49b960 and fixed in 6.1 with commit 74466e46e7543c7f74f1502181e9ba93f7521374 Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2022-50526 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: drivers/gpu/drm/msm/dp/dp_display.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/b312fcab461bd9484c61409007a6fe059f9c2074 https://git.kernel.org/stable/c/74466e46e7543c7f74f1502181e9ba93f7521374
Powered by blists - more mailing lists