Integer Overflow Vulnerability in Linux Kernel Affecting FPGA Feature Management
CVE-2022-50623

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2022-50623?

A vulnerability in the Linux kernel's FPGA feature management can lead to integer overflow. This issue arises from the improper multiplication of 'hdr.count' with 'sizeof(s32)' on 32-bit systems, potentially resulting in memory corruption. The flaw can be exploited to disrupt system stability or allow unauthorized access to kernel memory. A secure fix has been implemented utilizing the 'array_size()' function to eliminate this risk. It is crucial for users to upgrade to the latest version of the Linux kernel to protect against such vulnerabilities.

Affected Version(s)

Linux 322b598be4d9b9090cda560c4caab78704615ab4

Linux 322b598be4d9b9090cda560c4caab78704615ab4 < 1b5a931594f7ffd26d706614c37d4da0f2ffb6e7

References

https://git.kernel.org/stable/c/f59861946fa51bcc1f305809e...

https://git.kernel.org/stable/c/b94605f5cb99e90c8ca915235...

https://git.kernel.org/stable/c/1b5a931594f7ffd26d706614c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Dec 8, 2025

JSON