---

CVE-2022-39842 - log back

CVE-2022-39842 created at 27 Feb 2023 22:55:22
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description	+ I pxa3xx_gcu_write defined in drivers/video/fbdev/pxa3xx-gcu.c, a count parameter of type size_t is passed to words of type int. Then, copy_from_user() may cause a heap overflow because it is used as the third argument of copy_from_user()
References	+ https://github.com/torvalds/linux/commit/a09d2d00af53b43c6f11e6ab3cb58443c2cac8a7 + https://kernel.dance/#CVE-2022-39842
Notes