GSD-2022-1003101

See a problem?
Please try reporting it to the source first.

Source

https://data.gsd.id/GSD-2022-1003101

Import Source

https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1003xxx/GSD-2022-1003101.json

JSON Data

https://api.osv.dev/v1/vulns/GSD-2022-1003101

Published

2022-06-28T18:45:16.733049Z

Modified

2023-02-22T09:04:08.584258Z

Summary

erofs: fix buffer copy overflow of ztailpacking feature

Details

erofs: fix buffer copy overflow of ztailpacking feature

This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit 4d53a625f29074e7b8236c2c0e0922edb7608df9, it was introduced in version v5.17 by commit ab749badf9f41f32509cd103391b81ea7e684b76. For more details please see the references link.

References

Affected packages

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/
Events: Introduced

ab749badf9f41f32509cd103391b81ea7e684b76

Limit

4d53a625f29074e7b8236c2c0e0922edb7608df9

Affected versions

v5.*

v5.16

v5.16-rc4

v5.16-rc5

v5.16-rc6

v5.16-rc7

v5.16-rc8

v5.17

v5.17-rc1

v5.17-rc2

v5.17-rc3

v5.17-rc4

v5.17-rc5

v5.17-rc6

v5.17-rc7

v5.17-rc8

v5.17.1

v5.17.10

v5.17.11

v5.17.12

v5.17.13

v5.17.2

v5.17.3

v5.17.4

v5.17.5

v5.17.6

v5.17.7

v5.17.8

v5.17.9

Database specific

source

"https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1003xxx/GSD-2022-1003101.json"