Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix potential array overflow in bpf_trampoline_get_progs() The cnt value in the 'cnt >= BPF_MAX_TRAMP_PROGS' check does not include BPF_TRAMP_MODIFY_RETURN bpf programs, so the number of the attached BPF_TRAMP_MODIFY_RETURN bpf programs in a trampoline can exceed BPF_MAX_TRAMP_PROGS. When this happens, the assignment '*progs++ = aux->prog' in bpf_trampoline_get_progs() will cause progs array overflow as the progs field in the bpf_tramp_progs struct can only hold at most BPF_MAX_TRAMP_PROGS bpf programs.

INFO

Published Date :

2025-02-26T02:13:59.797Z

Last Modified :

2025-10-01T19:46:39.557Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49548 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49548.

URL Resource
https://git.kernel.org/stable/c/32c4559c61652f24c9fdd5440342196fe37453bc cve-icon cve-icon
https://git.kernel.org/stable/c/4f8897bcc20b9ae44758e0572538d741ab66f0dc cve-icon cve-icon
https://git.kernel.org/stable/c/7f845de2863334bed4f362e95853f5e7bc323737 cve-icon cve-icon
https://git.kernel.org/stable/c/a2aa95b71c9bbec793b5c5fa50f0a80d882b3e8d cve-icon cve-icon
https://git.kernel.org/stable/c/e36452d5da6325df7c10cffc60a9e68d21e2606d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022615-CVE-2022-49548-47fe@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49548 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49548 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact