-
CVE-2022-50763
- EPSS 0.04%
- Veröffentlicht 24.12.2025 13:05:54
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
crypto: marvell/octeontx - prevent integer overflows
In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/octeontx - prevent integer overflows The "code_length" value comes from the firmware file. If your firmware is untrusted realistically there is probably very little you can do to protect yourself. Still we try to limit the damage as much as possible. Also Smatch marks any data read from the filesystem as untrusted and prints warnings if it not capped correctly. The "code_length * 2" can overflow. The round_up(ucode_size, 16) + sizeof() expression can overflow too. Prevent these overflows.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
d9110b0b01ff1cd02751cd5c2c94e938a8906083
Version <
7bfa7d67735381715c98091194e81e7685f9b7db
Status
affected
Version
d9110b0b01ff1cd02751cd5c2c94e938a8906083
Version <
12acfa1059ad69aa352ddb2bf23ba1b831aff15f
Status
affected
Version
d9110b0b01ff1cd02751cd5c2c94e938a8906083
Version <
8f5eee162e55175d9dac98b5e9b8da76449d2257
Status
affected
Version
d9110b0b01ff1cd02751cd5c2c94e938a8906083
Version <
e7ff7a46baafd38d7ed45604397e650d61f5db8d
Status
affected
Version
d9110b0b01ff1cd02751cd5c2c94e938a8906083
Version <
caca37cf6c749ff0303f68418cfe7b757a4e0697
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
5.7
Status
affected
Version
0
Version <
5.7
Status
unaffected
Version <=
5.10.*
Version
5.10.150
Status
unaffected
Version <=
5.15.*
Version
5.15.75
Status
unaffected
Version <=
5.19.*
Version
5.19.17
Status
unaffected
Version <=
6.0.*
Version
6.0.3
Status
unaffected
Version <=
*
Version
6.1
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.04% | 0.101 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|