Medium severity5.5NVD Advisory· Published Jun 18, 2025· Updated Jun 17, 2026
CVE-2022-50167
CVE-2022-50167
Description
In the Linux kernel, the following vulnerability has been resolved:
bpf: fix potential 32-bit overflow when accessing ARRAY map element
If BPF array map is bigger than 4GB, element pointer calculation can overflow because both index and elem_size are u32. Fix this everywhere by forcing 64-bit multiplication. Extract this formula into separate small helper and use it consistently in various places.
Speculative-preventing formula utilizing index_mask trick is left as is, but explicit u64 casts are added in both places.
Affected products
3Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.