CVE-2022-50567
Published: Oct 22, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbAllocAG Syzbot found a crash : UBSAN: shift-out-of-bounds in dbAllocAG. The underlying bug is the missing check of bmp->db_agl2size. The field can be greater than 64 and trigger the shift-out-of-bounds. Fix this bug by adding a check of bmp->db_agl2size in dbMount since this field is used in many following functions. The upper bound for this field is L2MAXL2SIZE - L2MAXAG, thanks for the help of Dave Kleikamp. Note that, for maintenance, I reorganized error handling code of dbMount.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < d3b486946a4e62c7ef6023f7d9c1d049051384baaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 3115313cf03113e87c87adee18ee49a20bbdb9baaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < eea87acb6027be3dd4d3c57186bb22800d57fddaaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 359616ce587e524107730504891afa4b1a8be58caffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 3e997e4ce8ae7ab89d72334120f6aee49c5bbdbd+4 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 4.9.337 - <= 4.9.*unaffected 4.14.303 - <= 4.14.*unaffected 4.19.270 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now