CVE-2022-49280

NFSD: prevent underflow in nfssvc_decode_writeargs()

Published: 2/26/2025 Last updated: 5/4/2025 Reserved: 2/26/2025

In the Linux kernel, the following vulnerability has been resolved: NFSD: prevent underflow in nfssvc_decode_writeargs() Smatch complains: fs/nfsd/nfsxdr.c:341 nfssvc_decode_writeargs() warn: no lower bound on 'args->len' Change the type to unsigned to prevent this issue.

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (2)

Product	Vendor	Version
Linux	Linux	1.15.1
Linux	Linux	Version 1703 for 32-bit Systems

References (9)

https://git.kernel.org/stable/c/1a33e0de60feda402d05ac8a6cf409c19ea3e0b3
https://git.kernel.org/stable/c/438068f4912183a59fcb6b7496a06437f7fd4e2b
https://git.kernel.org/stable/c/9f0f048c1bfa7867d565a95fd8c28f4484ba1043
https://git.kernel.org/stable/c/85259340fc9bd54e3d567b41b881ecb4d0055da1
https://git.kernel.org/stable/c/65e21cc042f4c1518c8c55283f53bc725b78419d
https://git.kernel.org/stable/c/614a61e1592051cc42d3c38f899c9f7bdaad8a1d
https://git.kernel.org/stable/c/2764af8ce0bf03cc43ee4a11897cab96bde6caae
https://git.kernel.org/stable/c/413d8fefafe531a9442bb623e3fe292a38f88d65
https://git.kernel.org/stable/c/184416d4b98509fb4c3d8fc3d6dc1437896cc159