CVE-2022-49563
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49563
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49563.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49563
- Downstream
- Related
- Published
- 2025-02-26T02:23:10Z
- Modified
- 2025-10-21T10:44:41.720280Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- crypto: qat - add param check for RSA
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
crypto: qat - add param check for RSA
Reject requests with a source buffer that is bigger than the size of the key. This is to prevent a possible integer underflow that might happen when copying the source scatterlist into a linear buffer.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda990532023b903b10cf14736241cdd138e4bc92cFixed4d6d2adce08788b7667a6e58002682ea1bbf6a79
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda990532023b903b10cf14736241cdd138e4bc92cFixedf993321e50ba7a8ba4f5b19939e1772a921a1c42
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda990532023b903b10cf14736241cdd138e4bc92cFixed9714061423b8b24b8afb31b8eb4df977c63f19c4
Affected versions
v4.*
v4.10
v4.10-rc1
v4.10-rc2
v4.10-rc3
v4.10-rc4
v4.10-rc5
v4.10-rc6
v4.10-rc7
v4.10-rc8
v4.11
v4.11-rc1
v4.11-rc2
v4.11-rc3
v4.11-rc4
v4.11-rc5
v4.11-rc6
v4.11-rc7
v4.11-rc8
v4.12
v4.12-rc1
v4.12-rc2
v4.12-rc3
v4.12-rc4
v4.12-rc5
v4.12-rc6
v4.12-rc7
v4.13
v4.13-rc1
v4.13-rc2
v4.13-rc3
v4.13-rc4
v4.13-rc5
v4.13-rc6
v4.13-rc7
v4.14
v4.14-rc1
v4.14-rc2
v4.14-rc3
v4.14-rc4
v4.14-rc5
v4.14-rc6
v4.14-rc7
v4.14-rc8
v4.15
v4.15-rc1
v4.15-rc2
v4.15-rc3
v4.15-rc4
v4.15-rc5
v4.15-rc6
v4.15-rc7
v4.15-rc8
v4.15-rc9
v4.16
v4.16-rc1
v4.16-rc2
v4.16-rc3
v4.16-rc4
v4.16-rc5
v4.16-rc6
v4.16-rc7
v4.17
v4.17-rc1
v4.17-rc2
v4.17-rc3
v4.17-rc4
v4.17-rc5
v4.17-rc6
v4.17-rc7
v4.18
v4.18-rc1
v4.18-rc2
v4.18-rc3
v4.18-rc4
v4.18-rc5
v4.18-rc6
v4.18-rc7
v4.18-rc8
v4.19
v4.19-rc1
v4.19-rc2
v4.19-rc3
v4.19-rc4
v4.19-rc5
v4.19-rc6
v4.19-rc7
v4.19-rc8
v4.2
v4.2-rc2
v4.2-rc3
v4.2-rc4
v4.2-rc5
v4.2-rc6
v4.2-rc7
v4.2-rc8
v4.20
v4.20-rc1
v4.20-rc2
v4.20-rc3
v4.20-rc4
v4.20-rc5
v4.20-rc6
v4.20-rc7
v4.3
v4.3-rc1
v4.3-rc2
v4.3-rc3
v4.3-rc4
v4.3-rc5
v4.3-rc6
v4.3-rc7
v4.4
v4.4-rc1
v4.4-rc2
v4.4-rc3
v4.4-rc4
v4.4-rc5
v4.4-rc6
v4.4-rc7
v4.4-rc8
v4.5
v4.5-rc1
v4.5-rc2
v4.5-rc3
v4.5-rc4
v4.5-rc5
v4.5-rc6
v4.5-rc7
v4.6
v4.6-rc1
v4.6-rc2
v4.6-rc3
v4.6-rc4
v4.6-rc5
v4.6-rc6
v4.6-rc7
v4.7
v4.7-rc1
v4.7-rc2
v4.7-rc3
v4.7-rc4
v4.7-rc5
v4.7-rc6
v4.7-rc7
v4.8
v4.8-rc1
v4.8-rc2
v4.8-rc3
v4.8-rc4
v4.8-rc5
v4.8-rc6
v4.8-rc7
v4.8-rc8
v4.9
v4.9-rc1
v4.9-rc2
v4.9-rc3
v4.9-rc4
v4.9-rc5
v4.9-rc6
v4.9-rc7
v4.9-rc8
v5.*
v5.0
v5.0-rc1
v5.0-rc2
v5.0-rc3
v5.0-rc4
v5.0-rc5
v5.0-rc6
v5.0-rc7
v5.0-rc8
v5.1
v5.1-rc1
v5.1-rc2
v5.1-rc3
v5.1-rc4
v5.1-rc5
v5.1-rc6
v5.1-rc7
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.18.1
v5.18.10
v5.18.11
v5.18.12
v5.18.13
v5.18.14
v5.18.2
v5.18.3
v5.18.4
v5.18.5
v5.18.6
v5.18.7
v5.18.8
v5.18.9
v5.2
v5.2-rc1
v5.2-rc2
v5.2-rc3
v5.2-rc4
v5.2-rc5
v5.2-rc6
v5.2-rc7
v5.3
v5.3-rc1
v5.3-rc2
v5.3-rc3
v5.3-rc4
v5.3-rc5
v5.3-rc6
v5.3-rc7
v5.3-rc8
v5.4
v5.4-rc1
v5.4-rc2
v5.4-rc3
v5.4-rc4
v5.4-rc5
v5.4-rc6
v5.4-rc7
v5.4-rc8
v5.5
v5.5-rc1
v5.5-rc2
v5.5-rc3
v5.5-rc4
v5.5-rc5
v5.5-rc6
v5.5-rc7
v5.6
v5.6-rc1
v5.6-rc2
v5.6-rc3
v5.6-rc4
v5.6-rc5
v5.6-rc6
v5.6-rc7
v5.7
v5.7-rc1
v5.7-rc2
v5.7-rc3
v5.7-rc4
v5.7-rc5
v5.7-rc6
v5.7-rc7
v5.8
v5.8-rc1
v5.8-rc2
v5.8-rc3
v5.8-rc4
v5.8-rc5
v5.8-rc6
v5.8-rc7
v5.9
v5.9-rc1
v5.9-rc2
v5.9-rc3
v5.9-rc4
v5.9-rc5
v5.9-rc6
v5.9-rc7
v5.9-rc8
Database specific
vanir_signatures
[
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-1cd36f12",
"digest": {
"function_hash": "7652968482763764774325528310947476146",
"length": 3950.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4d6d2adce08788b7667a6e58002682ea1bbf6a79",
"signature_type": "Function",
"target": {
"function": "qat_rsa_dec",
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-77d5d6cf",
"digest": {
"function_hash": "7652968482763764774325528310947476146",
"length": 3950.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9714061423b8b24b8afb31b8eb4df977c63f19c4",
"signature_type": "Function",
"target": {
"function": "qat_rsa_dec",
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-a4686a4a",
"digest": {
"line_hashes": [
"66335057172224355434434433347165410467",
"334063900171710527863412832469205462659",
"207015825881991613455561903920138494230",
"134763806524708669490336608397911716117",
"66335057172224355434434433347165410467",
"334063900171710527863412832469205462659",
"207015825881991613455561903920138494230",
"134763806524708669490336608397911716117"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f993321e50ba7a8ba4f5b19939e1772a921a1c42",
"signature_type": "Line",
"target": {
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-aef3499c",
"digest": {
"line_hashes": [
"66335057172224355434434433347165410467",
"334063900171710527863412832469205462659",
"207015825881991613455561903920138494230",
"134763806524708669490336608397911716117",
"66335057172224355434434433347165410467",
"334063900171710527863412832469205462659",
"207015825881991613455561903920138494230",
"134763806524708669490336608397911716117"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9714061423b8b24b8afb31b8eb4df977c63f19c4",
"signature_type": "Line",
"target": {
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-bd31f803",
"digest": {
"function_hash": "173805057756573978032944248487113652368",
"length": 3498.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f993321e50ba7a8ba4f5b19939e1772a921a1c42",
"signature_type": "Function",
"target": {
"function": "qat_rsa_enc",
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-e55acbfa",
"digest": {
"function_hash": "173805057756573978032944248487113652368",
"length": 3498.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9714061423b8b24b8afb31b8eb4df977c63f19c4",
"signature_type": "Function",
"target": {
"function": "qat_rsa_enc",
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-f041879e",
"digest": {
"function_hash": "173805057756573978032944248487113652368",
"length": 3498.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4d6d2adce08788b7667a6e58002682ea1bbf6a79",
"signature_type": "Function",
"target": {
"function": "qat_rsa_enc",
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-f21179d1",
"digest": {
"function_hash": "7652968482763764774325528310947476146",
"length": 3950.0
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f993321e50ba7a8ba4f5b19939e1772a921a1c42",
"signature_type": "Function",
"target": {
"function": "qat_rsa_dec",
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
},
{
"signature_version": "v1",
"deprecated": false,
"id": "CVE-2022-49563-f84aee65",
"digest": {
"line_hashes": [
"66335057172224355434434433347165410467",
"334063900171710527863412832469205462659",
"207015825881991613455561903920138494230",
"134763806524708669490336608397911716117",
"66335057172224355434434433347165410467",
"334063900171710527863412832469205462659",
"207015825881991613455561903920138494230",
"134763806524708669490336608397911716117"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4d6d2adce08788b7667a6e58002682ea1bbf6a79",
"signature_type": "Line",
"target": {
"file": "drivers/crypto/qat/qat_common/qat_asym_algs.c"
}
}
]