5.5
CVE-2022-49222
- EPSS 0.25%
- Veröffentlicht 26.02.2025 07:00:59
- Zuletzt bearbeitet 22.09.2025 21:01:57
- CVE-Watchlists
- Unerledigt
drm/bridge: anx7625: Fix overflow issue on reading EDID
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: anx7625: Fix overflow issue on reading EDID The length of EDID block can be longer than 256 bytes, so we should use `int` instead of `u8` for the `edid_pos` variable.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.33
Linux ≫ Linux Kernel Version >= 5.16 < 5.16.19
Linux ≫ Linux Kernel Version >= 5.17 < 5.17.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.165 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-190 Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.
https://git.kernel.org/stable/c/64c06df2428bb7bb3d8cf5691416001af42d94dd
https://git.kernel.org/stable/c/d5c6f647aec9ed524aedd04a3aec5ebc21d39007
https://git.kernel.org/stable/c/db1c47d299298a7c52ccb201905d6be979fd7507
https://git.kernel.org/stable/c/f0d5d938d51af4eb08d9d8684fd9903425a0a87d