CVE-2022-49208

Published: Feb 26, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Prevent some integer underflows My static checker complains that: drivers/infiniband/hw/irdma/ctrl.c:3605 irdma_sc_ceq_init() warn: can subtract underflow 'info->dev->hmc_fpm_misc.max_ceqs'? It appears that "info->dev->hmc_fpm_misc.max_ceqs" comes from the firmware in irdma_sc_parse_fpm_query_buf() so, yes, there is a chance that it could be zero. Even if we trust the firmware, it's easy enough to change the condition just as a hardenning measure.

Vendor	Product	Versions
Linux	Linux	affected `3f49d684256963d3f27dfb9d9ff228e2255be78d - < d52dab6e03550f9c97121b0c11c0a3ed78ee76a4` affected `3f49d684256963d3f27dfb9d9ff228e2255be78d - < f21056f15bbeacab7b4b87af232f5599d1f2bff1` affected `3f49d684256963d3f27dfb9d9ff228e2255be78d - < 7340c3675d7ac946f4019b84cd7c64ed542dfe4c` affected `3f49d684256963d3f27dfb9d9ff228e2255be78d - < 6f6dbb819dfc1a35bcb8b709b5c83a3ea8beff75`
Linux	Linux	affected `5.14` unaffected `0 - < 5.14` unaffected `5.15.33 - <= 5.15.` unaffected `5.16.19 - <= 5.16.` unaffected `5.17.2 - <= 5.17.*` +1 more versions

References

https://git.kernel.org/stable/c/d52dab6e03550f9c97121b0c11c0a3ed78ee76a4

https://git.kernel.org/stable/c/f21056f15bbeacab7b4b87af232f5599d1f2bff1

https://git.kernel.org/stable/c/7340c3675d7ac946f4019b84cd7c64ed542dfe4c

https://git.kernel.org/stable/c/6f6dbb819dfc1a35bcb8b709b5c83a3ea8beff75

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49208

Description

Affected Products

References