Description

In the Linux kernel, the following vulnerability has been resolved: i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction() memcpy() is called in a loop while 'operation->length' upper bound is not checked and 'data_idx' also increments.

INFO

Published Date :

2024-04-28T12:59:10.481Z

Last Modified :

2025-05-04T08:20:08.103Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-48632 vulnerability.

Vendors Products
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-48632.

URL Resource
https://git.kernel.org/stable/c/3b5ab5fbe69ebbee5692c72b05071a43fc0655d8 cve-icon cve-icon
https://git.kernel.org/stable/c/48ee0a864d1af02eea98fc825cc230d61517a71e cve-icon cve-icon
https://git.kernel.org/stable/c/dc2a0c587006f29b724069740c48654b9dcaebd2 cve-icon cve-icon
https://git.kernel.org/stable/c/de24aceb07d426b6f1c59f33889d6a964770547b cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024042854-CVE-2022-48632-465f@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-48632 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-48632 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact