CVE-2022-50814

NONE EPSS 10.6%
Published Dec 30, 20256mo ago · Modified Jun 17, 20262w ago
Find Similar
Published Dec 30, 2025 6mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr KASAN reported this Bug: [17619.659757] BUG: KASAN: global-out-of-bounds in param_get_int+0x34/0x60 [17619.673193] Read of size 4 at addr fffff01332d7ed00 by task read_all/1507958 ... [17619.698934] The buggy address belongs to the variable: [17619.708371] sgl_sge_nr+0x0/0xffffffffffffa300 [hisi_zip] There is a mismatch in hisi_zip when get/set the variable sgl_sge_nr. The type of sgl_sge_nr is u16, and get/set sgl_sge_nr by param_get/set_int. Replacing param_get/set_int to param_get/set_ushort can fix this bug.

Threat Intelligence

EPSS Exploit Probability
10.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 5

  • git.kernel.org https://git.kernel.org/stable/c/272093471305261c4e07a2fc97c2d1e53cd56819
  • git.kernel.org https://git.kernel.org/stable/c/5eaebd19fbb0e26e73a34f55d3b1dc310df0eb15
  • git.kernel.org https://git.kernel.org/stable/c/d74f9340097a881869c4c22ca376654cc2516ecc
  • git.kernel.org https://git.kernel.org/stable/c/d88b88514ef28515ccfa1f1787c2aedef75a79dd
  • git.kernel.org https://git.kernel.org/stable/c/f8a983d6e01b198320d310cb1326364d7d973b2a

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.