CVE-2022-49790
Input: iforce - invert valid length check when fetching device IDs
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In the Linux kernel, the following vulnerability has been resolved: Input: iforce - invert valid length check when fetching device IDs syzbot is reporting uninitialized value at iforce_init_device() [1], for commit 6ac0aec6b0a6 ("Input: iforce - allow callers supply data buffer when fetching device IDs") is checking that valid length is shorter than bytes to read. Since iforce_get_id_packet() stores valid length when returning 0, the caller needs to check that valid length is longer than or equals to bytes to read.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | May 1, 2025 |
| Last Updated | May 11, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
6ac0aec6b0a651d64eef759fddf17d9145b51033 < 5d53797ce7ce8fb1d95a5bebc5efa9418c4217a3 6ac0aec6b0a651d64eef759fddf17d9145b51033 < 24cc679abbf31477d0cc6106ec83c2fbae6b3cdf 6ac0aec6b0a651d64eef759fddf17d9145b51033 < fdd57c20d4408cac3c3c535c120d244e083406c9 6ac0aec6b0a651d64eef759fddf17d9145b51033 < 6365569d62a75ddf53fb0c2936c16587a365984c 6ac0aec6b0a651d64eef759fddf17d9145b51033 < b8ebf250997c5fb253582f42bfe98673801ebebd
Linux / Linux
5.3
References
git.kernel.org: https://git.kernel.org/stable/c/5d53797ce7ce8fb1d95a5bebc5efa9418c4217a3 git.kernel.org: https://git.kernel.org/stable/c/24cc679abbf31477d0cc6106ec83c2fbae6b3cdf git.kernel.org: https://git.kernel.org/stable/c/fdd57c20d4408cac3c3c535c120d244e083406c9 git.kernel.org: https://git.kernel.org/stable/c/6365569d62a75ddf53fb0c2936c16587a365984c git.kernel.org: https://git.kernel.org/stable/c/b8ebf250997c5fb253582f42bfe98673801ebebd