CVE-2022-50130

staging: fbtft: core: set smem_len before fb_deferred_io_init call

Description

In the Linux kernel, the following vulnerability has been resolved: staging: fbtft: core: set smem_len before fb_deferred_io_init call The fbtft_framebuffer_alloc() calls fb_deferred_io_init() before initializing info->fix.smem_len. It is set to zero by the framebuffer_alloc() function. It will trigger a WARN_ON() at the start of fb_deferred_io_init() and the function will not do anything.

N/A

CVSS

Severity:

EPSS 0.02%

Affected: Linux Linux

References

Link	Tags
https://git.kernel.org/stable/c/4178bfa3fc9de556dfe248a6eabe29280f0ffda5
https://git.kernel.org/stable/c/5185c319e8ea67657e0d3edd520a7276516c506a
https://git.kernel.org/stable/c/6ae6abe240306f878557d6eadd950a2e2561f59f
https://git.kernel.org/stable/c/81e878887ff82a7dd42f22951391069a5d520627

Frequently Asked Questions

What is the severity of CVE-2022-50130?: CVE-2022-50130 has not yet been assigned a CVSS score.
How to fix CVE-2022-50130?: To fix CVE-2022-50130, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-50130 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2022-50130 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-50130?: CVE-2022-50130 affects Linux Linux, Linux Linux.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.