Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix a buffer overflow in mgmt_mesh_add() Smatch Warning: net/bluetooth/mgmt_util.c:375 mgmt_mesh_add() error: __memcpy() 'mesh_tx->param' too small (48 vs 50) Analysis: 'mesh_tx->param' is array of size 48. This is the destination. u8 param[sizeof(struct mgmt_cp_mesh_send) + 29]; // 19 + 29 = 48. But in the caller 'mesh_send' we reject only when len > 50. len > (MGMT_MESH_SEND_SIZE + 31) // 19 + 31 = 50.

INFO

Published Date :

2025-03-27T16:43:02.049Z

Last Modified :

2025-10-01T19:26:35.571Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49754 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49754.

URL Resource
https://git.kernel.org/stable/c/2185e0fdbb2137f22a9dd9fcbf6481400d56299b cve-icon cve-icon
https://git.kernel.org/stable/c/ed818fd8c531abf561b379995ee7cc4c68029464 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025032701-CVE-2022-49754-cc36@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49754 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49754 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact