PT-2025-8525 · Linux+4 · Linux Kernel+4

Cedric Wassenaar

Published

2022-07-18

Updated

2025-06-17

CVE-2022-49592

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for the dma queue left shift overflow issue

Description A left shift overflow issue has been identified in the Linux kernel when the queue number is greater than 4, due to a 32-bit integer variable. This results in a wrong mask calculation for MTL RXQ DMA MAP1. If CONFIG UBSAN is enabled, the kernel dumps a warning indicating a shift-out-of-bounds error. The issue is related to the dwmac4 map mtl dma function and the stmmac mtl configuration function.

Recommendations For Linux kernel versions prior to the fixed version, consider applying the patch that fixes the dma queue left shift overflow issue to resolve the problem. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-787CWE-119

Related Identifiers

BDU:2026-04046

CESA-2023_2951

CVE-2022-49592

RHSA-2023:2458

RHSA-2023:2951

RHSA-2023_2458

RHSA-2023_2951

SUSE-SU-2025:01983-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_01983-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2025-8525 · Linux+4 · Linux Kernel+4

CVE-2022-49592

Weakness Enumeration

Related Identifiers

Affected Products

References · 1636