CVE-2022-49451
MEDIUM EPSS 16.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix list protocols enumeration in the base protocol While enumerating protocols implemented by the SCMI platform using BASE_DISCOVER_LIST_PROTOCOLS, the number of returned protocols is currently validated in an improper way since the check employs a sum between unsigned integers that could overflow and cause the check itself to be silently bypassed if the returned value 'loop_num_ret' is big enough. Fix the validation avoiding the addition.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
16.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-190 Integer Overflow or Wraparound Numeric Error
Affected Products 6
References 7
- git.kernel.org https://git.kernel.org/stable/c/1052f22e127d0c34c3387bb389424ba1c61491ff
- git.kernel.org https://git.kernel.org/stable/c/2ccfcd7a09c826516edcfe464b05071961aada3f
- git.kernel.org https://git.kernel.org/stable/c/444a2d27fe9867d0da4b28fc45b793f32e099ab8
- git.kernel.org https://git.kernel.org/stable/c/6e7978695f4a6cbd83616b5a702b77fa2087b247
- git.kernel.org https://git.kernel.org/stable/c/8009120e0354a67068e920eb10dce532391361d0
- git.kernel.org https://git.kernel.org/stable/c/98342148a8cd242855d7e257f298c966c96dba9f
- git.kernel.org https://git.kernel.org/stable/c/b0e4bafac8963c2d85ee18d3d01f393735acceec
Remediation
- git.kernel.org https://git.kernel.org/stable/c/1052f22e127d0c34c3387bb389424ba1c61491ff
- git.kernel.org https://git.kernel.org/stable/c/2ccfcd7a09c826516edcfe464b05071961aada3f
- git.kernel.org https://git.kernel.org/stable/c/444a2d27fe9867d0da4b28fc45b793f32e099ab8
- git.kernel.org https://git.kernel.org/stable/c/6e7978695f4a6cbd83616b5a702b77fa2087b247
- git.kernel.org https://git.kernel.org/stable/c/8009120e0354a67068e920eb10dce532391361d0
- git.kernel.org https://git.kernel.org/stable/c/98342148a8cd242855d7e257f298c966c96dba9f
- git.kernel.org https://git.kernel.org/stable/c/b0e4bafac8963c2d85ee18d3d01f393735acceec