PT-2025-8496 · Linux+3 · Linux Kernel+3

Giovanni Cabiddu

·

Publicado

2022-01-01

·

Atualizado

2026-03-14

·

CVE-2022-49563

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A potential integer underflow issue has been identified in the Linux kernel's crypto subsystem, specifically in the QAT (Quick Assist Technology) module when handling RSA requests. This issue could occur when copying the source scatterlist into a linear buffer, potentially leading to problems if the source buffer is larger than the key size.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Integer Underflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-191

Identificadores relacionados

BDU:2026-02651
CVE-2022-49563
OPENSUSE-SU-2025_1213-1
OPENSUSE-SU-2025_1225-1
OPENSUSE-SU-2025_1248-1
OPENSUSE-SU-2025_1254-1
OPENSUSE-SU-2025_1259-1
OPENSUSE-SU-2025_1260-1
OPENSUSE-SU-2025_1262-1
OPENSUSE-SU-2025_1263-1
OPENSUSE-SU-2025_1275-1
SUSE-SU-2025:01907-1
SUSE-SU-2025:01908-1
SUSE-SU-2025:01956-1
SUSE-SU-2025:01958-1
SUSE-SU-2025:1027-1
SUSE-SU-2025:1176-1
SUSE-SU-2025:1183-1
SUSE-SU-2025:1194-1
SUSE-SU-2025:1213-1
SUSE-SU-2025:1225-1
SUSE-SU-2025:1231-1
SUSE-SU-2025:1236-1
SUSE-SU-2025:1241-1
SUSE-SU-2025:1248-1
SUSE-SU-2025:1254-1
SUSE-SU-2025:1259-1
SUSE-SU-2025:1260-1
SUSE-SU-2025:1262-1
SUSE-SU-2025:1263-1
SUSE-SU-2025:1275-1
SUSE-SU-2025:1278-1
SUSE-SU-2025:1293-1
SUSE-SU-2025:4123-1
SUSE-SU-2025_1027-1
SUSE-SU-2025_1241-1
SUSE-SU-2025_1263-1
SUSE-SU-2025_1293-1

Produtos afetados

Astra Linux
Debian
Linux Kernel
Suse