Description

In the Linux kernel, the following vulnerability has been resolved: bpf: fix potential 32-bit overflow when accessing ARRAY map element If BPF array map is bigger than 4GB, element pointer calculation can overflow because both index and elem_size are u32. Fix this everywhere by forcing 64-bit multiplication. Extract this formula into separate small helper and use it consistently in various places. Speculative-preventing formula utilizing index_mask trick is left as is, but explicit u64 casts are added in both places.

INFO

Published Date :

2025-06-18T11:03:20.997Z

Last Modified :

2025-06-18T11:03:20.997Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-50167 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-50167.

URL Resource
https://git.kernel.org/stable/c/063e092534d4c6785228e5b1eb6e9329f66ccbe4 cve-icon cve-icon
https://git.kernel.org/stable/c/3c7256b880b3a5aa1895fd169a34aa4224a11862 cve-icon cve-icon
https://git.kernel.org/stable/c/87ac0d600943994444e24382a87aa19acc4cd3d4 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025061827-CVE-2022-50167-e4bf@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-50167 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-50167 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact