CVE-2022-50167

MEDIUM EPSS 10.0%
Published Jun 18, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: fix potential 32-bit overflow when accessing ARRAY map element If BPF array map is bigger than 4GB, element pointer calculation can overflow because both index and elem_size are u32. Fix this everywhere by forcing 64-bit multiplication. Extract this formula into separate small helper and use it consistently in various places. Speculative-preventing formula utilizing index_mask trick is left as is, but explicit u64 casts are added in both places.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
10.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-190 Integer Overflow or Wraparound Numeric Error

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥5.3  –  <5.18.18
linuxlinux_kernel*≥5.19  –  <5.19.2

References 3

  • git.kernel.org https://git.kernel.org/stable/c/063e092534d4c6785228e5b1eb6e9329f66ccbe4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3c7256b880b3a5aa1895fd169a34aa4224a11862
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87ac0d600943994444e24382a87aa19acc4cd3d4
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/063e092534d4c6785228e5b1eb6e9329f66ccbe4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3c7256b880b3a5aa1895fd169a34aa4224a11862
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87ac0d600943994444e24382a87aa19acc4cd3d4
    Patch