PT-2025-26020 · Linux+2 · Linux Kernel+2

Published

2022-06-27

Updated

2025-07-28

CVE-2022-50094

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a stack-out-of-bound access in SPMI tracing functions. Specifically, the functions trace spmi write begin() and trace spmi read end() call memcpy() with a length of "len + 1", leading to one extra byte being read beyond the end of the specified buffer. This out-of-bound memory access can be fixed by using a length of "len" instead. A KASAN log shows the issue, indicating a read of size 2 at a specific address by a task, resulting in a stack-out-of-bounds error.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2026-03397

CVE-2022-50094

OESA-2025-1726

SUSE-SU-2025:02264-1

SUSE-SU-2025:02308-1

SUSE-SU-2025:02320-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02334-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02308-1

SUSE-SU-2025_02334-1

SUSE-SU-2025_02537-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-26020 · Linux+2 · Linux Kernel+2

CVE-2022-50094

Weakness Enumeration

Related Identifiers

Affected Products

References · 762