CVE-2022-50147

HIGH

Linux Kernel 5.15-5.15.60, 5.16-5.18.17, 5.19.0-5.19.1 - Out-of-bounds Read in get_nodes

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix get_nodes out of bound access When user specified more nodes than supported, get_nodes will access nmask array out of bounds.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/44652154484e7e3d12008802cfb6c28a8aa16d85

Patch

https://git.kernel.org/stable/c/8176f6a0d9c1b06bc7af7c3d6acd4a66448939df

Patch

https://git.kernel.org/stable/c/d1b5113674c3e95bb53c601ce2ea4719e851c74d

Patch

https://git.kernel.org/stable/c/000eca5d044d1ee23b4ca311793cf3fc528da6c6

Scores

CVSS v3 7.1

EPSS 0.0016

EPSS Percentile 5.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (14)

linux/Kernel 5.15.0 - 5.15.61linux

linux/Kernel 5.16.0 - 5.18.18linux

linux/Kernel 5.19.0 - 5.19.2linux

Linux/Linux < 5.15

Linux/Linux 5.15

Linux/Linux 5.15.61 - 5.15.*

Linux/Linux 5.18.18 - 5.18.*

Linux/Linux 5.19.2 - 5.19.*

Linux/Linux 6.0

Linux/Linux e130242dc351f1cfa2bbeb6766a1486ce936ef88 - 000eca5d044d1ee23b4ca311793cf3fc528da6c6

... and 4 more

Published Jun 18, 2025

Tracked Since Feb 18, 2026