UBSAN Shift-Out-of-Bounds Issue in Intel RAPL Component of Linux Kernel
CVE-2022-50366

7.1HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
17 September 2025

What is CVE-2022-50366?

The Linux kernel's Intel RAPL (Running Average Power Limit) component contains a vulnerability that leads to a UBSAN shift-out-of-bounds issue. When a given value is less than the defined time unit, a parameter passed to ilog2() can yield a zero result, resulting in a return value of -1. This scenario produces a shift exponent far exceeding the permissible range for a 32-bit integer, which raises the risk of undefined behavior. Immediate remediation is advised to mitigate potential exploitation risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 2d281d8196e38dd3a4ee9af26621ddde8329f269 < 42f79dbb9514f726ff21df25f09cb0693b0b2445

Linux 2d281d8196e38dd3a4ee9af26621ddde8329f269 < 3eb0ba70376f6ee40fa843fc9cee49269370b0b3

Linux 2d281d8196e38dd3a4ee9af26621ddde8329f269 < 4ebba43384722adbd325baec3a12c572d94488eb

References

https://git.kernel.org/stable/c/42f79dbb9514f726ff21df25f...
https://git.kernel.org/stable/c/3eb0ba70376f6ee40fa843fc9...
https://git.kernel.org/stable/c/4ebba43384722adbd325baec3...

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.