CVE-2022-50147

HIGH

Linux Kernel < 5.15.61 - Out-of-Bounds Read

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix get_nodes out of bound access When user specified more nodes than supported, get_nodes will access nmask array out of bounds.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/000eca5d044d1ee23b4ca311793cf3fc528da6c6

Patch

https://git.kernel.org/stable/c/44652154484e7e3d12008802cfb6c28a8aa16d85

Patch

https://git.kernel.org/stable/c/8176f6a0d9c1b06bc7af7c3d6acd4a66448939df

Patch

https://git.kernel.org/stable/c/d1b5113674c3e95bb53c601ce2ea4719e851c74d

Scores

CVSS v3 7.1

EPSS 0.0007

EPSS Percentile 20.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (4)

linux/Kernel 5.15.0 - 5.15.61linux

linux/Kernel 5.16.0 - 5.18.18linux

linux/Kernel 5.19.0 - 5.19.2linux

linux/linux_kernel 5.15 - 5.15.61

Published Jun 18, 2025

Tracked Since Feb 18, 2026