github - ghsa-rf45-2mvj-wwc3

ghsa-rf45-2mvj-wwc3

Vulnerability from github

Published

2025-12-30 15:30

Modified

2025-12-30 15:30

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/virtio: Check whether transferred 2D BO is shmem

Transferred 2D BO always must be a shmem BO. Add check for that to prevent NULL dereference if userspace passes a VRAM BO.

Show details on source website

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-50842"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-12-30T13:15:58Z",
    "severity": null
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/virtio: Check whether transferred 2D BO is shmem\n\nTransferred 2D BO always must be a shmem BO. Add check for that to prevent\nNULL dereference if userspace passes a VRAM BO.",
  "id": "GHSA-rf45-2mvj-wwc3",
  "modified": "2025-12-30T15:30:28Z",
  "published": "2025-12-30T15:30:27Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50842"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/36e133af33ea54193378b190cf92c47c12a43d34"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/989164305b933af06d69bb91044dafbd01025371"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/e473216b42aa1fd9fc6b94b608b42c210c655908"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/f122bcb34f1a4b02ef3d95058d8fd1316ea03785"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/f134f261d76ae3d5ecf68db642eaa746ceb84cfb"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CVE-2022-50842 (GCVE-0-2022-50842)

Vulnerability from cvelistv5

Published

2025-12-30 12:11

Modified

2026-01-02 15:04

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Check whether transferred 2D BO is shmem Transferred 2D BO always must be a shmem BO. Add check for that to prevent NULL dereference if userspace passes a VRAM BO.

References

URL

Tags

	https://git.kernel.org/stable/c/f134f261d76ae3d5ecf68db642eaa746ceb84cfb
	https://git.kernel.org/stable/c/f122bcb34f1a4b02ef3d95058d8fd1316ea03785
	https://git.kernel.org/stable/c/989164305b933af06d69bb91044dafbd01025371
	https://git.kernel.org/stable/c/36e133af33ea54193378b190cf92c47c12a43d34
	https://git.kernel.org/stable/c/e473216b42aa1fd9fc6b94b608b42c210c655908

Impacted products

Vendor

Product

Version

Version: f651c8b055423057d9f41525dfdc37b4796015d1
Version: f651c8b055423057d9f41525dfdc37b4796015d1
Version: f651c8b055423057d9f41525dfdc37b4796015d1
Version: f651c8b055423057d9f41525dfdc37b4796015d1
Version: f651c8b055423057d9f41525dfdc37b4796015d1

Version: 5.7

Show details on NVD website

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/virtio/virtgpu_vq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f134f261d76ae3d5ecf68db642eaa746ceb84cfb",
              "status": "affected",
              "version": "f651c8b055423057d9f41525dfdc37b4796015d1",
              "versionType": "git"
            },
            {
              "lessThan": "f122bcb34f1a4b02ef3d95058d8fd1316ea03785",
              "status": "affected",
              "version": "f651c8b055423057d9f41525dfdc37b4796015d1",
              "versionType": "git"
            },
            {
              "lessThan": "989164305b933af06d69bb91044dafbd01025371",
              "status": "affected",
              "version": "f651c8b055423057d9f41525dfdc37b4796015d1",
              "versionType": "git"
            },
            {
              "lessThan": "36e133af33ea54193378b190cf92c47c12a43d34",
              "status": "affected",
              "version": "f651c8b055423057d9f41525dfdc37b4796015d1",
              "versionType": "git"
            },
            {
              "lessThan": "e473216b42aa1fd9fc6b94b608b42c210c655908",
              "status": "affected",
              "version": "f651c8b055423057d9f41525dfdc37b4796015d1",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/virtio/virtgpu_vq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.7"
            },
            {
              "lessThan": "5.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.75",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.17",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.1",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.150",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.75",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.17",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0.3",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/virtio: Check whether transferred 2D BO is shmem\n\nTransferred 2D BO always must be a shmem BO. Add check for that to prevent\nNULL dereference if userspace passes a VRAM BO."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-02T15:04:57.381Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f134f261d76ae3d5ecf68db642eaa746ceb84cfb"
        },
        {
          "url": "https://git.kernel.org/stable/c/f122bcb34f1a4b02ef3d95058d8fd1316ea03785"
        },
        {
          "url": "https://git.kernel.org/stable/c/989164305b933af06d69bb91044dafbd01025371"
        },
        {
          "url": "https://git.kernel.org/stable/c/36e133af33ea54193378b190cf92c47c12a43d34"
        },
        {
          "url": "https://git.kernel.org/stable/c/e473216b42aa1fd9fc6b94b608b42c210c655908"
        }
      ],
      "title": "drm/virtio: Check whether transferred 2D BO is shmem",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-50842",
    "datePublished": "2025-12-30T12:11:00.439Z",
    "dateReserved": "2025-12-30T12:06:07.133Z",
    "dateUpdated": "2026-01-02T15:04:57.381Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.