Security Advisory

CVE-2022-48672

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-03 14:51:18

Last updated 2026-05-11 18:44:54

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one error in unflatten_dt_nodes() Commit 78c44d910d3e ("drivers/of: Fix depth when unflattening devicetree") forgot to fix up the depth check in the loop body in unflatten_dt_nodes() which makes it possible to overflow the nps[] buffer... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.

← Browse all CVEs View on cve.org ↗