CVE-2022-49030

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A size overflow issue has been identified in the Linux kernel, specifically in the libbpf component when handling ringbuf mmap. The maximum size of ringbuf is 2GB on x86-64 hosts, which can cause an overflow of u32 when mapping producer pages and data pages. This issue affects 32-bit applications running on 64-bit kernels, where the size of the read-only mmap region can also overflow size t. The fix involves casting the size of the read-only mmap region to u64 and checking for potential overflows during mmap.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.