CVE-2022-49444

Published: Feb 26, 2025

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: module: fix [e_shstrndx].sh_size=0 OOB access It is trivial to craft a module to trigger OOB access in this line: if (info->secstrings[strhdr->sh_size - 1] != '\0') { BUG: unable to handle page fault for address: ffffc90000aa0fff PGD 100000067 P4D 100000067 PUD 100066067 PMD 10436f067 PTE 0 Oops: 0000 [#1] PREEMPT SMP PTI CPU: 7 PID: 1215 Comm: insmod Not tainted 5.18.0-rc5-00007-g9bf578647087-dirty #10 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-4.fc34 04/01/2014 RIP: 0010:load_module+0x19b/0x2391 [rebased patch onto modules-next]

Vendor	Product	Versions
Linux	Linux	affected `ec2a29593c83ed71a7f16e3243941ebfcf75fdf6 - < 09cb6663618a74fe5572a4931ecbf098832e79ec` affected `ec2a29593c83ed71a7f16e3243941ebfcf75fdf6 - < 921630e2e5124a04158129a8f22f4b425e61a858` affected `ec2a29593c83ed71a7f16e3243941ebfcf75fdf6 - < 45a76414b6d8b8b39c23fea53b9d20e831ae72a0` affected `ec2a29593c83ed71a7f16e3243941ebfcf75fdf6 - < 391e982bfa632b8315235d8be9c0a81374c6a19c` affected `05d891e76dde3e430c707dae7d85139794eeadbd` +5 more versions
Linux	Linux	affected `5.12` unaffected `0 - < 5.12` unaffected `5.15.54 - <= 5.15.` unaffected `5.17.14 - <= 5.17.` unaffected `5.18.3 - <= 5.18.*` +1 more versions

References

https://git.kernel.org/stable/c/09cb6663618a74fe5572a4931ecbf098832e79ec

https://git.kernel.org/stable/c/921630e2e5124a04158129a8f22f4b425e61a858

https://git.kernel.org/stable/c/45a76414b6d8b8b39c23fea53b9d20e831ae72a0

https://git.kernel.org/stable/c/391e982bfa632b8315235d8be9c0a81374c6a19c

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49444

Description

Affected Products

References