PT-2025-25992 · Linux+4 · Linux Kernel+4

Published

2022-08-08

Updated

2025-09-12

CVE-2022-50066

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0

Description The issue is related to an out-of-range error in the aq vec index in the Linux kernel's Atlantic driver. The final update statement of a for loop exceeds the array range, and the dereference of self->aq vec[i] is not checked, leading to an index out-of-range error. This error occurs in the aq nic.c file at line 1404. The issue has been resolved by fixing the coding style in the for loop.

Recommendations For Linux kernel versions prior to 5.19.0, update to version 5.19.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable aq vec index to minimize the risk of exploitation.

Exploit

Fix

Improper Validation of Array Index

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129CWE-119

Related Identifiers

BDU:2026-03178

CESA-2023_7077

CVE-2022-50066

OESA-2025-1820

RHSA-2023:6583

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_7077

RHSA-2025:10671

RHSA-2025:10673

RHSA-2025:10675

RHSA-2025:10761

RHSA-2025:10828

RHSA-2025:10829

RHSA-2025:10830

RHSA-2025:10834

RHSA-2025:11358

RHSA-2025:11375

SUSE-SU-2025:02264-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:03204-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02537-1

SUSE-SU-2025_03204-1

Affected Products

Astra Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2025-25992 · Linux+4 · Linux Kernel+4

CVE-2022-50066

Weakness Enumeration

Related Identifiers

Affected Products

References · 740