CVE-2022-49743

Published: Mar 27, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ovl: Use "buf" flexible array for memcpy() destination The "buf" flexible array needs to be the memcpy() destination to avoid false positive run-time warning from the recent FORTIFY_SOURCE hardening: memcpy: detected field-spanning write (size 93) of single field "&fh->fb" at fs/overlayfs/export.c:799 (size 21)

Vendor	Product	Versions
Linux	Linux	affected `cbe7fba8edfc8cb8e621599e376f8ac5c224fa72 - < 012cdef22000f3104e4fa8224ad29fde509b8caf` affected `cbe7fba8edfc8cb8e621599e376f8ac5c224fa72 - < a77141a06367825d639ac51b04703d551163e36c` affected `cbe7fba8edfc8cb8e621599e376f8ac5c224fa72 - < 07a96977b2f462337a9121302de64277b8747ab1` affected `cbe7fba8edfc8cb8e621599e376f8ac5c224fa72 - < cf8aa9bf97cadf85745506c6a3e244b22c268d63`
Linux	Linux	affected `5.5` unaffected `0 - < 5.5` unaffected `5.10.248 - <= 5.10.` unaffected `5.15.93 - <= 5.15.` unaffected `6.1.11 - <= 6.1.*` +1 more versions

References

https://git.kernel.org/stable/c/012cdef22000f3104e4fa8224ad29fde509b8caf

https://git.kernel.org/stable/c/a77141a06367825d639ac51b04703d551163e36c

https://git.kernel.org/stable/c/07a96977b2f462337a9121302de64277b8747ab1

https://git.kernel.org/stable/c/cf8aa9bf97cadf85745506c6a3e244b22c268d63

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49743

Description

Affected Products

References