CVE-2022-50623
CVE-2022-50623 is a security vulnerability that is still awaiting full analysis and scoring. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- EPSS exploit prediction: 0% (7th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2022-55689
- Published:
- Last modified:
Description
In the Linux kernel, the following vulnerability has been resolved: fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() The "hdr.count * sizeof(s32)" multiplication can overflow on 32 bit systems leading to memory corruption. Use array_size() to fix that.
Frequently asked questions
- What is CVE-2022-50623?
- In the Linux kernel, the following vulnerability has been resolved: fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() The "hdr.count * sizeof(s32)" multiplication can overflow on 32 bit systems leading to memory corruption. Use array_size() to fix that.
- Is CVE-2022-50623 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (7th percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2022-50623?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2022-50623 have an EU (EUVD) identifier?
- Yes. CVE-2022-50623 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2022-55689.
- When was CVE-2022-50623 published?
- CVE-2022-50623 was published on 2025-12-08 and last updated on 2026-06-17.
References
- https://git.kernel.org/stable/c/1b5a931594f7ffd26d706614c37d4da0f2ffb6e7
- https://git.kernel.org/stable/c/939bc5453b8cbdde9f1e5110ce8309aedb1b501a
- https://git.kernel.org/stable/c/940253af8b3865b76de8d1b46bcd4a700104852e
- https://git.kernel.org/stable/c/b94605f5cb99e90c8ca91523597a40e1bd59546b
- https://git.kernel.org/stable/c/f59861946fa51bcc1f305809e4ebc1013b0ee61c