CVE-2022-50366

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-50366

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50366.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-50366

Downstream

DEBIAN-CVE-2022-50366

UBUNTU-CVE-2022-50366

Published

2025-09-17T14:56:17.441Z

Modified

2026-04-02T08:28:27.019825Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVSS Calculator

Summary

powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue

Details

In the Linux kernel, the following vulnerability has been resolved:

powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue

When value < time_unit, the parameter of ilog2() will be zero and the return value is -1. u64(-1) is too large for shift exponent and then will trigger shift-out-of-bounds:

shift exponent 18446744073709551615 is too large for 32-bit type 'int' Call Trace: raplcomputetimewindowcore raplwritedataraw settimewindow storeconstrainttimewindow_us

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50366.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

2d281d8196e38dd3a4ee9af26621ddde8329f269

Fixed

42f79dbb9514f726ff21df25f09cb0693b0b2445

Fixed

3eb0ba70376f6ee40fa843fc9cee49269370b0b3

Fixed

4ebba43384722adbd325baec3a12c572d94488eb

Fixed

49a6ffdaed60f0eb52c198fafebc05994e16e305

Fixed

708b9abe1b4a2f050a483db4b7edfc446b13df1f

Fixed

139bbbd01114433b80fe59f5e1330615aadf9752

Fixed

6216b685b8f48ab7b721a6fd5acbf526b41c13e8

Fixed

1d94af37565e4d3c26b0d63428e093a37d5b4c32

Fixed

2d93540014387d1c73b9ccc4d7895320df66d01b

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50366.json"