Shift Out-of-Bounds Vulnerability in Linux Kernel binfmt_misc
CVE-2022-50497

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 October 2025

What is CVE-2022-50497?

A vulnerability in the Linux kernel's binfmt_misc component has been identified, allowing for a left shift of 1 by 31 places that exceeds the boundaries of the integer type. This issue was flagged by the Undefined Behavior Sanitizer (UBSAN) and occurs in the check_special_flags function. Proper macro definitions are essential to address this issue, ensuring that flag types align with the expected unsigned long specifications. Failure to rectify this could lead to potential instability or unexpected behavior in kernel operations.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0f1a48994b3e516d5c7fd5d12204fdba7a604771

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 97382a2639b1cd9631f6069061e9d7062cd2b098

References

https://git.kernel.org/stable/c/0f1a48994b3e516d5c7fd5d12...

https://git.kernel.org/stable/c/ea6145370be8016755c43aca7...

https://git.kernel.org/stable/c/97382a2639b1cd9631f606906...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2025
Vulnerability Reserved
Oct 4, 2025

JSON