DEBIAN-CVE-2022-50221
- Source
- https://security-tracker.debian.org/tracker/CVE-2022-50221
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-50221.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2022-50221
- Upstream
- Published
- 2025-06-18T11:15:53Z
- Modified
- 2025-09-25T03:23:17.956530Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage handler computes the clipping rectangle for the display update. If the fbdev screen buffer ends near the beginning of a page, that page could contain more scanlines. The damage handler would then track these non-existing scanlines as dirty and provoke an out-of-bounds access during the screen update. Hence, clip the maximum memory range to the size of the screen buffer. While at it, rename the variables min/max to minoff/maxoff in drmfbhelperdeferredio(). This avoids confusion with the macros of the same name.
- References
Affected packages
Debian:12 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:14 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source