CVE-2022-50222

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-50222
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50222.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-50222
Downstream
Related
Published
2025-06-18T11:03:56.744Z
Modified
2026-04-03T13:14:41.074828821Z
Summary
tty: vt: initialize unicode screen buffer
Details

In the Linux kernel, the following vulnerability has been resolved:

tty: vt: initialize unicode screen buffer

syzbot reports kernel infoleak at vcs_read() [1], for buffer can be read immediately after resize operation. Initialize buffer using kzalloc().

#include <fcntl.h> #include <unistd.h> #include <sys/ioctl.h> #include <linux/fb.h>

int main(int argc, char *argv[]) { struct fbvarscreeninfo var = { }; const int fbfd = open("/dev/fb0", 3); ioctl(fbfd, FBIOGETVSCREENINFO, &var); var.yres = 0x21; ioctl(fbfd, FBIOPUTVSCREENINFO, &var); return read(open("/dev/vcsu", ORDONLY), &var, sizeof(var)) == -1; }

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50222.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d8ae7242718738ee1bf9bfdd632d2a4b150fdd26
Fixed
e02fa87e572bb7d90dcdbce9c0f519f1eb992e96
Fixed
cc9e874dace0c89ae535230c7da19b764746811e
Fixed
5c6c65681f39bf71bc72ed589dec3b8b20e75cac
Fixed
446f123aa6021e5f75a20789f05ff3f7ae51a42f
Fixed
777a462e1ae50a01fc4a871efa8e34d596a1e17d
Fixed
e0ef23e9b0ad18b9fd3741b0f1ad2282e4a18def
Fixed
af77c56aa35325daa2bc2bed5c2ebf169be61b86

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50222.json"