{"id":"CVE-2022-50407","summary":"crypto: hisilicon/qm - increase the memory of local variables","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - increase the memory of local variables\n\nIncrease the buffer to prevent stack overflow by fuzz test. The maximum\nlength of the qos configuration buffer is 256 bytes. Currently, the value\nof the 'val buffer' is only 32 bytes. The sscanf does not check the dest\nmemory length. So the 'val buffer' may stack overflow.","modified":"2026-04-02T08:28:28.875815Z","published":"2025-09-18T16:03:52.532Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50407.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/34c4f8ad45b4ea814c7ecc3f23a2d292959d5a52"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3efe90af4c0c46c58dba1b306de142827153d9c0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fc521abb6ee4b8f06fdfc52646140dab6a2ed334"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50407.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-50407"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"263c9959c9376ec0217d6adc61222a53469eed3c"},{"fixed":"34c4f8ad45b4ea814c7ecc3f23a2d292959d5a52"},{"fixed":"fc521abb6ee4b8f06fdfc52646140dab6a2ed334"},{"fixed":"3efe90af4c0c46c58dba1b306de142827153d9c0"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50407.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}