CVE-2022-49870 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAP_TO_MASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in security/commoncap.c:1252:2 left shift of 1 by 31 places cannot be represented in type 'int' Call Trace: <TASK> dump_stack_lvl+0x7d/0xa5 dump_stack+0x15/0x1b ubsan_epilogue+0xe/0x4e __ubsan_handle_shift_out_of_bounds+0x1e7/0x20c cap_task_prctl+0x561/0x6f0 security_task_prctl+0x5a/0xb0 __x64_sys_prctl+0x61/0x8f0 do_syscall_64+0x58/0x80 entry_SYSCALL_64_after_hwframe+0x63/0xcd </TASK>

Reserved 2025-05-01 | Published 2025-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

e338d263a76af78fe8f38a72131188b58fceb591 before 5b79fa628e2ab789e629a83cd211ef9b4c1a593e

affected

e338d263a76af78fe8f38a72131188b58fceb591 before 65b0bc7a0690861812ade523d19f82688ab819dc

affected

e338d263a76af78fe8f38a72131188b58fceb591 before dbaab08c8677d598244d21afb7818e44e1c5d826

affected

e338d263a76af78fe8f38a72131188b58fceb591 before 5661f111a1616ac105ec8cec81bff99b60f847ac

affected

e338d263a76af78fe8f38a72131188b58fceb591 before fcbd2b336834bd24e1d9454ad5737856470c10d7

affected

e338d263a76af78fe8f38a72131188b58fceb591 before 151dc8087b5609e53b069c068e3f3ee100efa586

affected

e338d263a76af78fe8f38a72131188b58fceb591 before 27bdb134c043ff32c459d98f16550d0ffa0b3c34

affected

e338d263a76af78fe8f38a72131188b58fceb591 before 46653972e3ea64f79e7f8ae3aa41a4d3fdb70a13

affected

Default status

affected

2.6.25

affected

Any version before 2.6.25

unaffected

4.9.334

unaffected

4.14.300

unaffected

4.19.267

unaffected

5.4.225

unaffected

5.10.155

unaffected

5.15.79

unaffected

6.0.9

unaffected

6.1

unaffected

References

git.kernel.org/...c/5b79fa628e2ab789e629a83cd211ef9b4c1a593e

git.kernel.org/...c/65b0bc7a0690861812ade523d19f82688ab819dc

git.kernel.org/...c/dbaab08c8677d598244d21afb7818e44e1c5d826

git.kernel.org/...c/5661f111a1616ac105ec8cec81bff99b60f847ac

git.kernel.org/...c/fcbd2b336834bd24e1d9454ad5737856470c10d7

git.kernel.org/...c/151dc8087b5609e53b069c068e3f3ee100efa586

git.kernel.org/...c/27bdb134c043ff32c459d98f16550d0ffa0b3c34

git.kernel.org/...c/46653972e3ea64f79e7f8ae3aa41a4d3fdb70a13

cve.org (CVE-2022-49870)

nvd.nist.gov (CVE-2022-49870)

Download JSON