CVE-2022-50567
BaseFortify
Publication date: 2025-10-22
Last updated on: 2025-10-22
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a shift-out-of-bounds error in the Linux kernel's JFS filesystem code, specifically in the dbAllocAG function. It occurs because the code does not properly check the value of the bmp->db_agl2size field, which can be greater than 64 and cause an invalid bit shift operation. This can lead to crashes or undefined behavior. The issue was fixed by adding a check on bmp->db_agl2size in the dbMount function to ensure it stays within valid bounds.
How can this vulnerability impact me? :
This vulnerability can cause the Linux kernel to crash or behave unpredictably when handling the JFS filesystem, potentially leading to system instability or denial of service. It may affect systems using the JFS filesystem by triggering kernel crashes due to the shift-out-of-bounds error.