{"id":"CVE-2022-50842","summary":"drm/virtio: Check whether transferred 2D BO is shmem","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/virtio: Check whether transferred 2D BO is shmem\n\nTransferred 2D BO always must be a shmem BO. Add check for that to prevent\nNULL dereference if userspace passes a VRAM BO.","modified":"2026-04-02T08:28:47.526442Z","published":"2025-12-30T12:11:00.439Z","related":["SUSE-SU-2026:0263-1","SUSE-SU-2026:0317-1","SUSE-SU-2026:0411-1","SUSE-SU-2026:0617-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50842.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/36e133af33ea54193378b190cf92c47c12a43d34"},{"type":"WEB","url":"https://git.kernel.org/stable/c/989164305b933af06d69bb91044dafbd01025371"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e473216b42aa1fd9fc6b94b608b42c210c655908"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f122bcb34f1a4b02ef3d95058d8fd1316ea03785"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f134f261d76ae3d5ecf68db642eaa746ceb84cfb"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50842.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-50842"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"f651c8b055423057d9f41525dfdc37b4796015d1"},{"fixed":"f134f261d76ae3d5ecf68db642eaa746ceb84cfb"},{"fixed":"f122bcb34f1a4b02ef3d95058d8fd1316ea03785"},{"fixed":"989164305b933af06d69bb91044dafbd01025371"},{"fixed":"36e133af33ea54193378b190cf92c47c12a43d34"},{"fixed":"e473216b42aa1fd9fc6b94b608b42c210c655908"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50842.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.7.0"},{"fixed":"5.10.150"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.75"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"5.19.17"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.20.0"},{"fixed":"6.0.3"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50842.json"}}],"schema_version":"1.7.5"}