CVE-2022-49553

Published: Feb 26, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: validate BOOT sectors_per_clusters When the NTFS BOOT sectors_per_clusters field is > 0x80, it represents a shift value. Make sure that the shift value is not too large before using it (NTFS max cluster size is 2MB). Return -EVINVAL if it too large. This prevents negative shift values and shift values that are larger than the field size. Prevents this UBSAN error: UBSAN: shift-out-of-bounds in ../fs/ntfs3/super.c:673:16 shift exponent -192 is negative

Vendor	Product	Versions
Linux	Linux	affected `82cae269cfa953032fbb8980a7d554d60fb00b17 - < 58cf68a1886d14ffdc5c892ce483a82156769e88` affected `82cae269cfa953032fbb8980a7d554d60fb00b17 - < 4746c49b11b2403f5b5b07c6eac9e60663dcd9a3` affected `82cae269cfa953032fbb8980a7d554d60fb00b17 - < a2b6986316a2d106f6951e76db70fa4b2fde64a9` affected `82cae269cfa953032fbb8980a7d554d60fb00b17 - < a3b774342fa752a5290c0de36375289dfcf4a260`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `5.15.45 - <= 5.15.` unaffected `5.17.13 - <= 5.17.` unaffected `5.18.2 - <= 5.18.*` +1 more versions

References

https://git.kernel.org/stable/c/58cf68a1886d14ffdc5c892ce483a82156769e88

https://git.kernel.org/stable/c/4746c49b11b2403f5b5b07c6eac9e60663dcd9a3

https://git.kernel.org/stable/c/a2b6986316a2d106f6951e76db70fa4b2fde64a9

https://git.kernel.org/stable/c/a3b774342fa752a5290c0de36375289dfcf4a260

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49553

Description

Affected Products

References