CVE-2022-50085 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raid_resume There is a KASAN warning in raid_resume when running the lvm test lvconvert-raid.sh. The reason for the warning is that mddev->raid_disks is greater than rs->raid_disks, so the loop touches one entry beyond the allocated length.

Reserved 2025-06-18 | Published 2025-06-18 | Updated 2025-06-18 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before c2f075e729636a44e98d9722e3852c2fa6fa49b6

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 3bfdc95466f5be4d8d95db5a5b470d61641a7c24

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 71f601c779b3cc1baf497796f5b922c3fe5d2a1e

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before c2d47bef93fb74aa97d90f9a40ca657b8f376083

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 50235d9a1f1f742619ed9963cb9f240e5b821d46

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 74af83732a39ab7d3bc9b49219a535853e25679f

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 2a9faa704d83ff0b04387e385efd8ae21cd95af6

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 7dad24db59d2d2803576f2e3645728866a056dab

affected

Default status

affected

4.14.291

unaffected

4.19.256

unaffected

5.4.211

unaffected

5.10.137

unaffected

5.15.61

unaffected

5.18.18

unaffected

5.19.2

unaffected

6.0

unaffected

References

git.kernel.org/...c/c2f075e729636a44e98d9722e3852c2fa6fa49b6

git.kernel.org/...c/3bfdc95466f5be4d8d95db5a5b470d61641a7c24

git.kernel.org/...c/71f601c779b3cc1baf497796f5b922c3fe5d2a1e

git.kernel.org/...c/c2d47bef93fb74aa97d90f9a40ca657b8f376083

git.kernel.org/...c/50235d9a1f1f742619ed9963cb9f240e5b821d46

git.kernel.org/...c/74af83732a39ab7d3bc9b49219a535853e25679f

git.kernel.org/...c/2a9faa704d83ff0b04387e385efd8ae21cd95af6

git.kernel.org/...c/7dad24db59d2d2803576f2e3645728866a056dab

cve.org (CVE-2022-50085)

nvd.nist.gov (CVE-2022-50085)

Download JSON