CVE-2022-49147

Published: Feb 26, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: block: Fix the maximum minor value is blk_alloc_ext_minor() ida_alloc_range(..., min, max, ...) returns values from min to max, inclusive. So, NR_EXT_DEVT is a valid idx returned by blk_alloc_ext_minor(). This is an issue because in device_add_disk(), this value is used in: ddev->devt = MKDEV(disk->major, disk->first_minor); and NR_EXT_DEVT is '(1 << MINORBITS)'. So, should 'disk->first_minor' be NR_EXT_DEVT, it would overflow.

Vendor	Product	Versions
Linux	Linux	affected `22ae8ce8b89241c94ac00c237752c0ffa37ba5ae - < 5b9ac3727e4abb11c9cfbe9c0781fc05dfdd7cfb` affected `22ae8ce8b89241c94ac00c237752c0ffa37ba5ae - < 0f8cf8f5ccbad25ed6828875b222dbab29d5c272` affected `22ae8ce8b89241c94ac00c237752c0ffa37ba5ae - < fbe2cc4525480ddd20c866bb5c0578071e01451a` affected `22ae8ce8b89241c94ac00c237752c0ffa37ba5ae - < d1868328dec5ae2cf210111025fcbc71f78dd5ca`
Linux	Linux	affected `5.11` unaffected `0 - < 5.11` unaffected `5.15.33 - <= 5.15.` unaffected `5.16.19 - <= 5.16.` unaffected `5.17.2 - <= 5.17.*` +1 more versions

References

https://git.kernel.org/stable/c/5b9ac3727e4abb11c9cfbe9c0781fc05dfdd7cfb

https://git.kernel.org/stable/c/0f8cf8f5ccbad25ed6828875b222dbab29d5c272

https://git.kernel.org/stable/c/fbe2cc4525480ddd20c866bb5c0578071e01451a

https://git.kernel.org/stable/c/d1868328dec5ae2cf210111025fcbc71f78dd5ca

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49147

Description

Affected Products

References