CVE-2022-50540

MEDIUM EPSS 3.8%
Published Oct 7, 20258mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 7, 2025 8mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom-adm: fix wrong sizeof config in slave_config Fix broken slave_config function that uncorrectly compare the peripheral_size with the size of the config pointer instead of the size of the config struct. This cause the crci value to be ignored and cause a kernel panic on any slave that use adm driver. To fix this, compare to the size of the struct and NOT the size of the pointer.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
3.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥5.17  –  <5.19.17
linuxlinux_kernel*≥6.0  –  <6.0.3

References 3

  • git.kernel.org https://git.kernel.org/stable/c/7490274b41a432824f7df5071ace3df2ab59caa7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7c8765308371be30f50c1b5b97618b731514b207
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f1dd45a6585a1689e1e8906b3f9e302b9d40c715
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/7490274b41a432824f7df5071ace3df2ab59caa7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7c8765308371be30f50c1b5b97618b731514b207
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f1dd45a6585a1689e1e8906b3f9e302b9d40c715
    Patch