CVE-2022-49143

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A potential overflow issue in the Linux kernel has been identified, specifically in the nbd dev add() function when handling the first minor value. If the index is a large number, it may become negative when forced to an integer, potentially causing an overflow when shifted by part shift. This could lead to a situation where sysfs complains about duplicate creation due to the resulting positive value. The issue is resolved by moving the index judgment to the front.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.