CVE-2022-49356

high

Description

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Trap RDMA segment overflows Prevent svc_rdma_build_writes() from walking off the end of a Write chunk's segment array. Caught with KASAN. The test that this fix replaces is invalid, and might have been left over from an earlier prototype of the PCL work.

References

https://git.kernel.org/stable/c/f012e95b377c73c0283f009823c633104dedb337

https://git.kernel.org/stable/c/ea26bf5eca1459b5a7824997d7823409ce38214e

https://git.kernel.org/stable/c/812c13521d4a72469c78ce06d8cdc8dc5b5557b5

https://git.kernel.org/stable/c/659f7568e09593945c221bf20217a82ebdfe1328

Details

Source: Mitre, NVD

Published: 2025-02-26

Updated: 2025-02-26

Risk Information

CVSS v2

Base Score: 6.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Severity: High