CVE-2022-48632

Published: Apr 28, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction() memcpy() is called in a loop while 'operation->length' upper bound is not checked and 'data_idx' also increments.

Vendor	Product	Versions
Linux	Linux	affected `b5b5b32081cd206baa6e58cca7f112d9723785d6 - < 48ee0a864d1af02eea98fc825cc230d61517a71e` affected `b5b5b32081cd206baa6e58cca7f112d9723785d6 - < dc2a0c587006f29b724069740c48654b9dcaebd2` affected `b5b5b32081cd206baa6e58cca7f112d9723785d6 - < 3b5ab5fbe69ebbee5692c72b05071a43fc0655d8` affected `b5b5b32081cd206baa6e58cca7f112d9723785d6 - < de24aceb07d426b6f1c59f33889d6a964770547b`
Linux	Linux	affected `5.10` unaffected `0 - < 5.10` unaffected `5.10.146 - <= 5.10.` unaffected `5.15.71 - <= 5.15.` unaffected `5.19.12 - <= 5.19.*` +1 more versions

References

https://git.kernel.org/stable/c/48ee0a864d1af02eea98fc825cc230d61517a71e

https://git.kernel.org/stable/c/dc2a0c587006f29b724069740c48654b9dcaebd2

https://git.kernel.org/stable/c/3b5ab5fbe69ebbee5692c72b05071a43fc0655d8

https://git.kernel.org/stable/c/de24aceb07d426b6f1c59f33889d6a964770547b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-48632

Description

Affected Products

References