CVE-2022-50869

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's ntfs3 file system implementation. Specifically, an out-of-bounds write can occur in the r page function when the PAGE SIZE is 64K and read log page is called by log read rst for the first time. This happens because the size of the buffer is set to 4K, but subsequent memory operations, such as memcpy, attempt to write up to 64K, leading to a buffer overflow. The call trace includes functions like ntfs read run nb, read log page, log read rst, log replay, and ntfs loadlog and replay.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.