Description

In the Linux kernel, the following vulnerability has been resolved: can: m_can: m_can_{read_fifo,echo_tx_event}(): shift timestamp to full 32 bits In commit 1be37d3b0414 ("can: m_can: fix periph RX path: use rx-offload to ensure skbs are sent from softirq context") the RX path for peripheral devices was switched to RX-offload. Received CAN frames are pushed to RX-offload together with a timestamp. RX-offload is designed to handle overflows of the timestamp correctly, if 32 bit timestamps are provided. The timestamps of m_can core are only 16 bits wide. So this patch shifts them to full 32 bit before passing them to RX-offload.

INFO

Published Date :

2025-02-26T02:23:57.411Z

Last Modified :

2025-05-04T08:42:45.738Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49659 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49659.

URL Resource
https://git.kernel.org/stable/c/2a2914a5bd7f38efe55a8372178146de82e0bce9 cve-icon cve-icon
https://git.kernel.org/stable/c/4c3333693f07313f5f0145a922f14a7d3c0f4f21 cve-icon cve-icon
https://git.kernel.org/stable/c/c7333f79888497bfd75dcd02a94eaf836dd1042c cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022622-CVE-2022-49659-31c4@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49659 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49659 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact