Vulnerability-Lookup

CVE-2022-50368 (GCVE-0-2022-50368)

Vulnerability from cvelistv5 – Published: 2025-09-17 14:56 – Updated: 2026-01-14 18:42

Title

drm/msm/dsi: fix memory corruption with too many bridges

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: fix memory corruption with too many bridges Add the missing sanity check on the bridge counter to avoid corrupting data beyond the fixed-sized bridge array in case there are ever more than eight bridges. Patchwork: https://patchwork.freedesktop.org/patch/502668/

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-787 - Out-of-bounds Write

Assigner

Linux

References

URL

Tags

	https://git.kernel.org/stable/c/4e5587cddb334f7a5…
	https://git.kernel.org/stable/c/f649ed0e1b7a1545f…
	https://git.kernel.org/stable/c/21c4679af01f1027c…
	https://git.kernel.org/stable/c/9f035d1fb30648fe7…
	https://git.kernel.org/stable/c/e83b354890a3c1d52…
	https://git.kernel.org/stable/c/2e786eb2f9cebb07e…

Impacted products

Vendor

Product

Version

Linux

Affected: a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e , < 4e5587cddb334f7a5bb1c49ea8bbfc966fafe1b8 (git)
Affected: a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e , < f649ed0e1b7a1545f8e27267d3c468b3cb222ece (git)
Affected: a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e , < 21c4679af01f1027cb559330c2e7d410089b2b36 (git)
Affected: a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e , < 9f035d1fb30648fe70ee01627eb131c56d699b35 (git)
Affected: a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e , < e83b354890a3c1d5256162f87a6cc38c47ae7f20 (git)
Affected: a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e , < 2e786eb2f9cebb07e317226b60054df510b60c65 (git)

Linux

Affected: 4.1
Unaffected: 0 , < 4.1 (semver)
Unaffected: 4.19.264 , ≤ 4.19.* (semver)
Unaffected: 5.4.223 , ≤ 5.4.* (semver)
Unaffected: 5.10.153 , ≤ 5.10.* (semver)
Unaffected: 5.15.77 , ≤ 5.15.* (semver)
Unaffected: 6.0.7 , ≤ 6.0.* (semver)
Unaffected: 6.1 , ≤ * (original_commit_for_fix)

Show details on NVD website

Vendor	Product	Description
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 LTSS
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
SUSE	Confidential Computing Module	Confidential Computing Module 15-SP6
SUSE	openSUSE Leap	openSUSE Leap 15.5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5 LTSS
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP7
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.2
SUSE	openSUSE Leap	openSUSE Leap 15.3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP6
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.2
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12-SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
SUSE	openSUSE Leap	openSUSE Leap 15.4
SUSE	Basesystem Module	Basesystem Module 15-SP6
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP7
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP6
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.2
SUSE	SUSE Manager Server	SUSE Manager Server 4.2
SUSE	Legacy Module	Legacy Module 15-SP6
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.1
SUSE	SUSE Enterprise Storage	SUSE Enterprise Storage 7.1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
SUSE	openSUSE Leap	openSUSE Leap 15.6
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.3
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP6
SUSE	Development Tools Module	Development Tools Module 15-SP6
SUSE	SUSE Linux Enterprise Workstation Extension	SUSE Linux Enterprise Workstation Extension 15 SP7
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP4
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP7
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE	Basesystem Module	Basesystem Module 15-SP7
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP7
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP6
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP6
SUSE	Legacy Module	Legacy Module 15-SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5 LTSS
SUSE	SUSE Linux Enterprise Workstation Extension	SUSE Linux Enterprise Workstation Extension 15 SP6
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 Business Critical Linux
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3
SUSE	Development Tools Module	Development Tools Module 15-SP7
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP6
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.4
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP4

Vendor	Product	Description
SUSE	Public Cloud Module	Public Cloud Module 15-SP7
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP4
SUSE	openSUSE Leap	openSUSE Leap 15.5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP5
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP7
SUSE	openSUSE Leap	openSUSE Leap 15.3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP6
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.3
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12-SP5
SUSE	openSUSE Leap	openSUSE Leap 15.4
SUSE	SUSE Manager Server	SUSE Manager Server 4.3 LTS
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP6
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP7
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4 LTSS
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.1
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	Public Cloud Module	Public Cloud Module 15-SP6
SUSE	openSUSE Leap	openSUSE Leap 15.6
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.3
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.3 LTS
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP6
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP4
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.3
SUSE	SUSE Real Time Module	SUSE Real Time Module 15-SP6
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP6
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.3 LTS
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP7
SUSE	SUSE Manager Server	SUSE Manager Server 4.3
SUSE	SUSE Real Time Module	SUSE Real Time Module 15-SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.4
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP4

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/21c4679af01f1027cb559330c2e7d410089b2b36	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2e786eb2f9cebb07e317226b60054df510b60c65	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/4e5587cddb334f7a5bb1c49ea8bbfc966fafe1b8	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/9f035d1fb30648fe70ee01627eb131c56d699b35	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e83b354890a3c1d5256162f87a6cc38c47ae7f20	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/f649ed0e1b7a1545f8e27267d3c468b3cb222ece	Patch

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	6.1
linux	linux_kernel	6.1

Action not permitted

CVE-2022-50368 (GCVE-0-2022-50368)

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Tags

Sightings

Nomenclature