Linux · Linux Kernel · CVE-2022-48632
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to a stack overflow in the `mlxbf i2c smbus start transaction()` function. This occurs because `memcpy()` is called in a loop while the upper bound of `operation->length` is not checked and `data idx` also increments. This could allow an attacker to cause a denial of service.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.