CVE-2022-50030

Published: Jun 18, 2025Modified: Nov 13, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input Malformed user input to debugfs results in buffer overflow crashes. Adapt input string lengths to fit within internal buffers, leaving space for NULL terminators.

Affected (4)

Products: Linux: Linux Kernel

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 5.4.211
Linux Linux Kernel	From 5.11 to 5.15.63
Linux Linux Kernel	From 5.16 to 5.19.4
Linux Linux Kernel	From 5.5 to 5.10.138

Related CWEs

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (5)

https://git.kernel.org/stable/c/2d544e9d19c109dfe34b3dc1253a8b2971abe060

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/927907f1cbb3408cadde637fccfc17bb6b10a87d

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/b92506dc51f81741eb26609175ac206c20f06e0a

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/c29a4baaad38a332c0ae480cf6d6c5bf75ac1828

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/f8191d40aa612981ce897e66cda6a88db8df17bb

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

Timeline

No history available yet.