CVE-2022-50040

Published: Jun 18, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions() If an error occurs in dsa_devlink_region_create(), then 'priv->regions' array will be accessed by negative index '-1'. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Vendor	Product	Versions
Linux	Linux	affected `bf425b82059e0b0752c0026353c1902112200837 - < 7983e1e44cb322eba6af84160b6d18df80603fb8` affected `bf425b82059e0b0752c0026353c1902112200837 - < e84c6321f3578c38cb3c24258db91a92672b17a8` affected `bf425b82059e0b0752c0026353c1902112200837 - < 79f86b862416126a2e826cb74224180d6625a32f` affected `bf425b82059e0b0752c0026353c1902112200837 - < fd8e899cdb5ecaf8e8ee73854a99e10807eef1de`
Linux	Linux	affected `5.10` unaffected `0 - < 5.10` unaffected `5.10.138 - <= 5.10.` unaffected `5.15.63 - <= 5.15.` unaffected `5.19.4 - <= 5.19.*` +1 more versions

References

https://git.kernel.org/stable/c/7983e1e44cb322eba6af84160b6d18df80603fb8

https://git.kernel.org/stable/c/e84c6321f3578c38cb3c24258db91a92672b17a8

https://git.kernel.org/stable/c/79f86b862416126a2e826cb74224180d6625a32f

https://git.kernel.org/stable/c/fd8e899cdb5ecaf8e8ee73854a99e10807eef1de

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-50040

Description

Affected Products

References