CVE-2022-49553

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically in the fs/ntfs3 module. The issue arises when the NTFS BOOT sectors per clusters field has a value greater than 0x80, which represents a shift value. To prevent negative shift values and shift values larger than the field size, validation has been added to ensure the shift value is not too large before use, considering the NTFS maximum cluster size is 2MB. This fix prevents a UBSAN error related to shift-out-of-bounds in the super.c file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.