CVE-2022-49464

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A buffer copy overflow issue has been identified in the Linux kernel, specifically in the erofs filesystem. The problem arises when the ztailpacking feature is used, causing a potential use-after-free error in the z erofs shifted transform function. This issue occurs because the tail pcluster may not be a complete filesystem block, leading to incorrect handling of uncompressed tail pcluster data. The error is triggered when the memcpy function is called, resulting in a read of size 4074 at a specific memory address.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.