CVE-2022-50763

NONE EPSS 11.1%

Published Dec 24, 20256mo ago · Modified Jun 17, 20261w ago

Published Dec 24, 2025 6mo ago

Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/octeontx - prevent integer overflows The "code_length" value comes from the firmware file. If your firmware is untrusted realistically there is probably very little you can do to protect yourself. Still we try to limit the damage as much as possible. Also Smatch marks any data read from the filesystem as untrusted and prints warnings if it not capped correctly. The "code_length * 2" can overflow. The round_up(ucode_size, 16) + sizeof() expression can overflow too. Prevent these overflows.

Threat Intelligence

EPSS Exploit Probability

11.1% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

References 5

git.kernel.org https://git.kernel.org/stable/c/12acfa1059ad69aa352ddb2bf23ba1b831aff15f
git.kernel.org https://git.kernel.org/stable/c/7bfa7d67735381715c98091194e81e7685f9b7db
git.kernel.org https://git.kernel.org/stable/c/8f5eee162e55175d9dac98b5e9b8da76449d2257
git.kernel.org https://git.kernel.org/stable/c/caca37cf6c749ff0303f68418cfe7b757a4e0697
git.kernel.org https://git.kernel.org/stable/c/e7ff7a46baafd38d7ed45604397e650d61f5db8d

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.