CVE-2022-49044
Published: Feb 26, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: dm integrity: fix memory corruption when tag_size is less than digest size It is possible to set up dm-integrity in such a way that the "tag_size" parameter is less than the actual digest size. In this situation, a part of the digest beyond tag_size is ignored. In this case, dm-integrity would write beyond the end of the ic->recalc_tags array and corrupt memory. The corruption happened in integrity_recalc->integrity_sector_checksum->crypto_shash_final. Fix this corruption by increasing the tags array so that it has enough padding at the end to accomodate the loop in integrity_recalc() being able to write a full digest size for the last member of the tags array.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 7eada909bfd7ac90a4522e56aa3179d1fd68cd14 - < 6a95d91c0b315c965198f6ab7dec7c94129e17e0affected 7eada909bfd7ac90a4522e56aa3179d1fd68cd14 - < 7f84c937222944c03f4615ca4742df6bed0e5adfaffected 7eada909bfd7ac90a4522e56aa3179d1fd68cd14 - < cd02b2687d66f0a8e716384de4b9a0671331f1dcaffected 7eada909bfd7ac90a4522e56aa3179d1fd68cd14 - < 6b4bf97587ef6c1927a78934b700204920655123affected 7eada909bfd7ac90a4522e56aa3179d1fd68cd14 - < 4d485cf9b609709e45d5113e6e2b1b01254b2fe9+1 more versions |
Linux | Linux | affected 4.12unaffected 0 - < 4.12unaffected 4.19.240 - <= 4.19.*unaffected 5.4.190 - <= 5.4.*unaffected 5.10.112 - <= 5.10.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now