CVE-2022-50130

medium

Description

In the Linux kernel, the following vulnerability has been resolved: staging: fbtft: core: set smem_len before fb_deferred_io_init call The fbtft_framebuffer_alloc() calls fb_deferred_io_init() before initializing info->fix.smem_len. It is set to zero by the framebuffer_alloc() function. It will trigger a WARN_ON() at the start of fb_deferred_io_init() and the function will not do anything.

References

https://git.kernel.org/stable/c/81e878887ff82a7dd42f22951391069a5d520627

https://git.kernel.org/stable/c/6ae6abe240306f878557d6eadd950a2e2561f59f

https://git.kernel.org/stable/c/5185c319e8ea67657e0d3edd520a7276516c506a

https://git.kernel.org/stable/c/4178bfa3fc9de556dfe248a6eabe29280f0ffda5

Details

Source: Mitre, NVD

Published: 2025-06-18

Updated: 2025-06-18

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018