CVE-2022-50130

staging: fbtft: core: set smem_len before fb_deferred_io_init call

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: staging: fbtft: core: set smem_len before fb_deferred_io_init call The fbtft_framebuffer_alloc() calls fb_deferred_io_init() before
initializing info->fix.smem_len. It is set to zero by the
framebuffer_alloc() function. It will trigger a WARN_ON() at the
start of fb_deferred_io_init() and the function will not do anything.

A flaw was found in the fbtft module in the Linux kernel. An incorrect order of operations can cause an improper initialization of framebuffer devices, potentially impacting system stability and resulting in a denial of service.

In the Linux kernel, the following vulnerability has been resolved: staging: fbtft: core: set smem_len before fb_deferred_io_init call The fbtft_framebuffer_alloc() calls fb_deferred_io_init() before initializing info->fix.smem_len. It is set to zero by the framebuffer_alloc() function. It will trigger a WARN_ON() at the start of fb_deferred_io_init() and the function will not do anything.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-06-18 CVE Reserved
2025-06-18 CVE Published
2025-06-18 CVE Updated
2025-10-18 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-665: Improper Initialization

CAPEC

References (8)

URL	Tag	Source
https://git.kernel.org/stable/c/6a9ae2fe887042f76fd3d334349e64e8ab3c55a2	Vuln. Introduced
https://git.kernel.org/stable/c/856082f021a28221db2c32bd0531614a8382be67	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/5185c319e8ea67657e0d3edd520a7276516c506a	2022-08-17
https://git.kernel.org/stable/c/6ae6abe240306f878557d6eadd950a2e2561f59f	2022-08-17
https://git.kernel.org/stable/c/81e878887ff82a7dd42f22951391069a5d520627	2022-07-28
https://git.kernel.org/stable/c/4178bfa3fc9de556dfe248a6eabe29280f0ffda5	2024-02-23

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2022-50130	2023-05-16
https://bugzilla.redhat.com/show_bug.cgi?id=2373468	2023-05-16

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.18.3 < 5.18.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.18.3 < 5.18.18"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.19 < 5.19.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.19 < 5.19.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.19 < 6.0 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.19 < 6.0"		en		Affected