CVE-2022-49952

HIGH EPSS 10.1%
Published Jun 18, 20251y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix memory corruption on probe Add the missing sanity check on the probed-session count to avoid corrupting memory beyond the fixed-size slab-allocated session array when there are more than FASTRPC_MAX_SESSIONS sessions defined in the devicetree.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
10.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥5.1  –  <5.4.213
linuxlinux_kernel*≥5.5  –  <5.10.142
linuxlinux_kernel*≥5.11  –  <5.15.66
linuxlinux_kernel*≥5.16  –  <5.19.8
linuxlinux_kernel6.0any
linuxlinux_kernel6.0any
linuxlinux_kernel6.0any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/0e33b0f322fecd7a92d9dc186535cdf97940a856
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9baa1415d9abdd1e08362ea2dcfadfacee8690b5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0425c2facd9166fa083f90c9f3187ace0c7837a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c99bc901d5eb9fbdd7bd39f625e170ce97390336
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec186b9f4aa2e6444d5308a6cc268aada7007639
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0e33b0f322fecd7a92d9dc186535cdf97940a856
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9baa1415d9abdd1e08362ea2dcfadfacee8690b5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0425c2facd9166fa083f90c9f3187ace0c7837a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c99bc901d5eb9fbdd7bd39f625e170ce97390336
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec186b9f4aa2e6444d5308a6cc268aada7007639
    Patch