CVE-2022-49845

Published: May 1, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939_send_one(): fix missing CAN header initialization The read access to struct canxl_frame::len inside of a j1939 created skbuff revealed a missing initialization of reserved and later filled elements in struct can_frame. This patch initializes the 8 byte CAN header with zero.

Vendor	Product	Versions
Linux	Linux	affected `9d71dd0c70099914fcd063135da3c580865e924c - < d0513b095e1ef1469718564dec3fb3348556d0a8` affected `9d71dd0c70099914fcd063135da3c580865e924c - < f8e0edeaa0f2b860bdbbf0aafb4492533043d650` affected `9d71dd0c70099914fcd063135da3c580865e924c - < 69e86c6268d59ceddd0abe9ae8f1f5296f316c3c` affected `9d71dd0c70099914fcd063135da3c580865e924c - < 2719f82ad5d8199cf5f346ea8bb3998ad5323b72` affected `9d71dd0c70099914fcd063135da3c580865e924c - < 3eb3d283e8579a22b81dd2ac3987b77465b2a22f`
Linux	Linux	affected `5.4` unaffected `0 - < 5.4` unaffected `5.4.225 - <= 5.4.` unaffected `5.10.155 - <= 5.10.` unaffected `5.15.79 - <= 5.15.*` +2 more versions

References

https://git.kernel.org/stable/c/d0513b095e1ef1469718564dec3fb3348556d0a8

https://git.kernel.org/stable/c/f8e0edeaa0f2b860bdbbf0aafb4492533043d650

https://git.kernel.org/stable/c/69e86c6268d59ceddd0abe9ae8f1f5296f316c3c

https://git.kernel.org/stable/c/2719f82ad5d8199cf5f346ea8bb3998ad5323b72

https://git.kernel.org/stable/c/3eb3d283e8579a22b81dd2ac3987b77465b2a22f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49845

Description

Affected Products

References