Re: CVE-2022-49267: mmc: core: use sysfs_emit() instead of sprintf()

Next message: Johan Hovold: "Re: [PATCH v2 00/18] wifi: drop redundant USB device references"
Previous message: Shawn Lin: "Re: [PATCH] mmc: sdhci-of-arasan: Use standard mmc_clk_phase_map infrastructure"
In reply to: Siddh Raman Pant: "Re: CVE-2022-49267: mmc: core: use sysfs_emit() instead of sprintf()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: gregkh@xxxxxxxxxxxxxxxxxxx

Date: Tue Mar 24 2026 - 04:43:14 EST

On Tue, Mar 24, 2026 at 07:42:23AM +0000, Siddh Raman Pant wrote:
> On Wed, 26 Feb 2025 02:57:52 +0100, Greg Kroah-Hartman wrote:
> > In the Linux kernel, the following vulnerability has been resolved:
> >
> > mmc: core: use sysfs_emit() instead of sprintf()
> >
> > sprintf() (still used in the MMC core for the sysfs output) is vulnerable
> > to the buffer overflow. Use the new-fangled sysfs_emit() instead.
> >
> > Found by Linux Verification Center (linuxtesting.org) with the SVACE static
> > analysis tool.
> >
> > The Linux kernel CVE team has assigned CVE-2022-49267 to this issue.
>
> What overflow does this actually fix? I think this is a defensive patch.
>
> In fact, you asked the same question earlier during stable backport
> which apparently got no reply:
> https://lore.kernel.org/all/2025121205-wool-undesired-0609@gregkh/

You are correct, this is now rejected, thanks for the review.

greg k-h