CVE - CVE-2022-49374

CVE-ID
CVE-2022-49374	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: tipc: check attribute length for bearer name syzbot reported uninit-value: ===================================================== BUG: KMSAN: uninit-value in string_nocheck lib/vsprintf.c:644 [inline] BUG: KMSAN: uninit-value in string+0x4f9/0x6f0 lib/vsprintf.c:725 string_nocheck lib/vsprintf.c:644 [inline] string+0x4f9/0x6f0 lib/vsprintf.c:725 vsnprintf+0x2222/0x3650 lib/vsprintf.c:2806 vprintk_store+0x537/0x2150 kernel/printk/printk.c:2158 vprintk_emit+0x28b/0xab0 kernel/printk/printk.c:2256 vprintk_default+0x86/0xa0 kernel/printk/printk.c:2283 vprintk+0x15f/0x180 kernel/printk/printk_safe.c:50 _printk+0x18d/0x1cf kernel/printk/printk.c:2293 tipc_enable_bearer net/tipc/bearer.c:371 [inline] __tipc_nl_bearer_enable+0x2022/0x22a0 net/tipc/bearer.c:1033 tipc_nl_bearer_enable+0x6c/0xb0 net/tipc/bearer.c:1042 genl_family_rcv_msg_doit net/netlink/genetlink.c:731 [inline] - Do sanity check the attribute length for TIPC_NLA_BEARER_NAME. - Do not use 'illegal name' in printing message.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/292be63c382ce20673ee61dff1ee9ed4a3dcaae7 URL:https://git.kernel.org/stable/c/292be63c382ce20673ee61dff1ee9ed4a3dcaae7 MISC:https://git.kernel.org/stable/c/3af15272cde28fe5c8489174b8624e232c1775ec URL:https://git.kernel.org/stable/c/3af15272cde28fe5c8489174b8624e232c1775ec MISC:https://git.kernel.org/stable/c/7f36f798f89bf32c0164049cb0e3fd1af613d0bb URL:https://git.kernel.org/stable/c/7f36f798f89bf32c0164049cb0e3fd1af613d0bb MISC:https://git.kernel.org/stable/c/8b91d0dfc839e67708c905648cd0e7507a2263e5 URL:https://git.kernel.org/stable/c/8b91d0dfc839e67708c905648cd0e7507a2263e5 MISC:https://git.kernel.org/stable/c/92a930fcf4250fe961f6238b99af0bc405799f39 URL:https://git.kernel.org/stable/c/92a930fcf4250fe961f6238b99af0bc405799f39 MISC:https://git.kernel.org/stable/c/b8fac8e321044a9ac50f7185b4e9d91a7745e4b0 URL:https://git.kernel.org/stable/c/b8fac8e321044a9ac50f7185b4e9d91a7745e4b0 MISC:https://git.kernel.org/stable/c/f07670871f4d19e613740eebe210e7e9ea535973 URL:https://git.kernel.org/stable/c/f07670871f4d19e613740eebe210e7e9ea535973
Assigning CNA
kernel.org
Date Record Created
20250226	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20250226)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)