CVE-2022-49166

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-49166
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49166.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49166
Downstream
Published
2025-02-26T01:55:25.528Z
Modified
2026-04-02T08:27:21.453041Z
Summary
ntfs: add sanity check on allocation size
Details

In the Linux kernel, the following vulnerability has been resolved:

ntfs: add sanity check on allocation size

ntfsreadinodemount invokes ntfsmalloc_nofs with zero allocation size. It triggers one BUG in the _ntfsmalloc function.

Fix this by adding sanity check on ni->attrlistsize.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49166.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed
bd8d7daa0e53b184a2f3c6e0d47330780d0a0650
Fixed
21d490232f323ed4053eb9924615e6fea291f154
Fixed
07793d2e55563124108762f4e5f811db92ffe02f
Fixed
fe41ad8be036a3de3e4bdde709551aeb4de2fe7d
Fixed
b230f2d9441a34c7f483d39ab78519bcf73cc2e0
Fixed
24ab2d4ef52c2dbb62a60844b87fc8872383407a
Fixed
115fae2c1566eacc5ad2055f72521354612e72c3
Fixed
c641087d381a08363e5f14179bc6b0a23eca7c47
Fixed
714fbf2647b1a33d914edd695d4da92029c7e7c0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49166.json"