Description

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: validate BOOT sectors_per_clusters When the NTFS BOOT sectors_per_clusters field is > 0x80, it represents a shift value. Make sure that the shift value is not too large before using it (NTFS max cluster size is 2MB). Return -EVINVAL if it too large. This prevents negative shift values and shift values that are larger than the field size. Prevents this UBSAN error: UBSAN: shift-out-of-bounds in ../fs/ntfs3/super.c:673:16 shift exponent -192 is negative

INFO

Published Date :

2025-02-26T02:14:02.183Z

Last Modified :

2025-05-04T08:40:24.975Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49553 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49553.

URL Resource
https://git.kernel.org/stable/c/4746c49b11b2403f5b5b07c6eac9e60663dcd9a3 cve-icon cve-icon
https://git.kernel.org/stable/c/58cf68a1886d14ffdc5c892ce483a82156769e88 cve-icon cve-icon
https://git.kernel.org/stable/c/a2b6986316a2d106f6951e76db70fa4b2fde64a9 cve-icon cve-icon
https://git.kernel.org/stable/c/a3b774342fa752a5290c0de36375289dfcf4a260 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022616-CVE-2022-49553-4466@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49553 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49553 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact