CVE-2022-49222

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-49222

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49222.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-49222

Downstream

DEBIAN-CVE-2022-49222

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

UBUNTU-CVE-2022-49222

Related

Published

2025-02-26T01:55:53.799Z

Modified

2026-03-11T03:10:34.500233Z

Summary

drm/bridge: anx7625: Fix overflow issue on reading EDID

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/bridge: anx7625: Fix overflow issue on reading EDID

The length of EDID block can be longer than 256 bytes, so we should use int instead of u8 for the edid_pos variable.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49222.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

8bdfc5dae4e3ba4d99dfb430ef43249e5f1b7730

Fixed

64c06df2428bb7bb3d8cf5691416001af42d94dd

Fixed

f0d5d938d51af4eb08d9d8684fd9903425a0a87d

Fixed

db1c47d299298a7c52ccb201905d6be979fd7507

Fixed

d5c6f647aec9ed524aedd04a3aec5ebc21d39007

Affected versions

v5.*

v5.10

v5.10-rc1

v5.10-rc2

v5.10-rc3

v5.10-rc4

v5.10-rc5

v5.10-rc6

v5.10-rc7

v5.11

v5.11-rc1

v5.11-rc2

v5.11-rc3

v5.11-rc4

v5.11-rc5

v5.11-rc6

v5.11-rc7

v5.12

v5.12-rc1

v5.12-rc1-dontuse

v5.12-rc2

v5.12-rc3

v5.12-rc4

v5.12-rc5

v5.12-rc6

v5.12-rc7

v5.12-rc8

v5.13

v5.13-rc1

v5.13-rc2

v5.13-rc3

v5.13-rc4

v5.13-rc5

v5.13-rc6

v5.13-rc7

v5.14

v5.14-rc1

v5.14-rc2

v5.14-rc3

v5.14-rc4

v5.14-rc5

v5.14-rc6

v5.14-rc7

v5.15

v5.15-rc1

v5.15-rc2

v5.15-rc3

v5.15-rc4

v5.15-rc5

v5.15-rc6

v5.15-rc7

v5.15.1

v5.15.10

v5.15.11

v5.15.12

v5.15.13

v5.15.14

v5.15.15

v5.15.16

v5.15.17

v5.15.18

v5.15.19

v5.15.2

v5.15.20

v5.15.21

v5.15.22

v5.15.23

v5.15.24

v5.15.25

v5.15.26

v5.15.27

v5.15.28

v5.15.29

v5.15.3

v5.15.30

v5.15.31

v5.15.32

v5.15.4

v5.15.5

v5.15.6

v5.15.7

v5.15.8

v5.15.9

v5.16

v5.16-rc1

v5.16-rc2

v5.16-rc3

v5.16-rc4

v5.16-rc5

v5.16-rc6

v5.16-rc7

v5.16-rc8

v5.16.1

v5.16.10

v5.16.11

v5.16.12

v5.16.13

v5.16.14

v5.16.15

v5.16.16

v5.16.17

v5.16.18

v5.16.2

v5.16.3

v5.16.4

v5.16.5

v5.16.6

v5.16.7

v5.16.8

v5.16.9

v5.17

v5.17-rc1

v5.17-rc2

v5.17-rc3

v5.17-rc4

v5.17-rc5

v5.17-rc6

v5.17-rc7

v5.17-rc8

v5.17.1

v5.9

v5.9-rc6

v5.9-rc7

v5.9-rc8

Database specific

vanir_signatures

[
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/bridge/analogix/anx7625.c",
            "function": "sp_tx_edid_read"
        },
        "id": "CVE-2022-49222-060aac8f",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@64c06df2428bb7bb3d8cf5691416001af42d94dd",
        "digest": {
            "function_hash": "9429801073678729110752502796810875313",
            "length": 1703.0
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/bridge/analogix/anx7625.c",
            "function": "sp_tx_edid_read"
        },
        "id": "CVE-2022-49222-35972f13",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d5c6f647aec9ed524aedd04a3aec5ebc21d39007",
        "digest": {
            "function_hash": "145592520975518330089403627838211906603",
            "length": 1775.0
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/bridge/analogix/anx7625.c"
        },
        "id": "CVE-2022-49222-c54f9335",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@db1c47d299298a7c52ccb201905d6be979fd7507",
        "digest": {
            "line_hashes": [
                "297749540702535289691574044056588467651",
                "57097510256762263329614175171308381113",
                "269506254198634541621919335805313780004",
                "185342182510449656213244056874342832360"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/bridge/analogix/anx7625.c",
            "function": "sp_tx_edid_read"
        },
        "id": "CVE-2022-49222-cff6f7ef",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@db1c47d299298a7c52ccb201905d6be979fd7507",
        "digest": {
            "function_hash": "145592520975518330089403627838211906603",
            "length": 1775.0
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/bridge/analogix/anx7625.c"
        },
        "id": "CVE-2022-49222-d8e7e989",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@64c06df2428bb7bb3d8cf5691416001af42d94dd",
        "digest": {
            "line_hashes": [
                "297749540702535289691574044056588467651",
                "57097510256762263329614175171308381113",
                "269506254198634541621919335805313780004",
                "185342182510449656213244056874342832360"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/bridge/analogix/anx7625.c"
        },
        "id": "CVE-2022-49222-e1800a8a",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d5c6f647aec9ed524aedd04a3aec5ebc21d39007",
        "digest": {
            "line_hashes": [
                "297749540702535289691574044056588467651",
                "57097510256762263329614175171308381113",
                "269506254198634541621919335805313780004",
                "185342182510449656213244056874342832360"
            ],
            "threshold": 0.9
        }
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49222.json"