CVE-2022-50814

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr<br /> <br /> KASAN reported this Bug:<br /> <br /> [17619.659757] BUG: KASAN: global-out-of-bounds in param_get_int+0x34/0x60<br /> [17619.673193] Read of size 4 at addr fffff01332d7ed00 by task read_all/1507958<br /> ...<br /> [17619.698934] The buggy address belongs to the variable:<br /> [17619.708371] sgl_sge_nr+0x0/0xffffffffffffa300 [hisi_zip]<br /> <br /> There is a mismatch in hisi_zip when get/set the variable sgl_sge_nr.<br /> The type of sgl_sge_nr is u16, and get/set sgl_sge_nr by<br /> param_get/set_int.<br /> <br /> Replacing param_get/set_int to param_get/set_ushort can fix this bug.