CVE-2022-49845

Description

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939_send_one(): fix missing CAN header initialization The read access to struct canxl_frame::len inside of a j1939 created skbuff revealed a missing initialization of reserved and later filled elements in struct can_frame. This patch initializes the 8 byte CAN header with zero.

Reserved 2025-05-01 | Published 2025-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

9d71dd0c70099914fcd063135da3c580865e924c before d0513b095e1ef1469718564dec3fb3348556d0a8
affected

9d71dd0c70099914fcd063135da3c580865e924c before f8e0edeaa0f2b860bdbbf0aafb4492533043d650
affected

9d71dd0c70099914fcd063135da3c580865e924c before 69e86c6268d59ceddd0abe9ae8f1f5296f316c3c
affected

9d71dd0c70099914fcd063135da3c580865e924c before 2719f82ad5d8199cf5f346ea8bb3998ad5323b72
affected

9d71dd0c70099914fcd063135da3c580865e924c before 3eb3d283e8579a22b81dd2ac3987b77465b2a22f
affected

Default status
affected

5.4
affected

Any version before 5.4
unaffected

5.4.225
unaffected

5.10.155
unaffected

5.15.79
unaffected

6.0.9
unaffected

6.1
unaffected

References

git.kernel.org/...c/d0513b095e1ef1469718564dec3fb3348556d0a8

git.kernel.org/...c/f8e0edeaa0f2b860bdbbf0aafb4492533043d650

git.kernel.org/...c/69e86c6268d59ceddd0abe9ae8f1f5296f316c3c

git.kernel.org/...c/2719f82ad5d8199cf5f346ea8bb3998ad5323b72

git.kernel.org/...c/3eb3d283e8579a22b81dd2ac3987b77465b2a22f

cve.org (CVE-2022-49845)

nvd.nist.gov (CVE-2022-49845)

Download JSON