Description

In the Linux kernel, the following vulnerability has been resolved: dm mirror log: round up region bitmap size to BITS_PER_LONG The code in dm-log rounds up bitset_size to 32 bits. It then uses find_next_zero_bit_le on the allocated region. find_next_zero_bit_le accesses the bitmap using unsigned long pointers. So, on 64-bit architectures, it may access 4 bytes beyond the allocated size. Fix this bug by rounding up bitset_size to BITS_PER_LONG. This bug was found by running the lvm2 testsuite with kasan.

INFO

Published Date :

2025-02-26T02:24:27.532Z

Last Modified :

2025-05-04T08:43:50.278Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49710 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49710.

URL Resource
https://git.kernel.org/stable/c/0d2209b54f1de0c2f99cab246d4cf2cfe24aaaa9 cve-icon cve-icon
https://git.kernel.org/stable/c/85e123c27d5cbc22cfdc01de1e2ca1d9003a02d0 cve-icon cve-icon
https://git.kernel.org/stable/c/9a02f3275acc628c0d956be771405ced79ac36df cve-icon cve-icon
https://git.kernel.org/stable/c/ae460312875159285cef5bf3dc654593f404a1ef cve-icon cve-icon
https://git.kernel.org/stable/c/ba751f0d25f07aa21ce9b85372a3792bf7969d13 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022630-CVE-2022-49710-0591@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49710 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49710 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact