CVE-2022-49005
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ASoC: ops: Fix bounds check for _sx controls
For _sx controls the semantics of the max field is not the usual one, max is the number of steps rather than the maximum value. This means that our check in snd_soc_put_volsw_sx() needs to just check against the maximum value.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 9e5c40b5706d8aae2cf70bd7e01f0b4575a642d0 < e46adadf19248d59af3aa6bc52e09115bf479bf7 | affected |
| Linux | Linux | 4977491e4b3aad8567f57e2a9992d251410c1db3 < 4a95a49f26308782b4056401989ecd7768fda8fa | affected |
| Linux | Linux | 9a12fcbf3c622f9bf6b110a873d62b0cba93972e < 46bab25cc0230df60d1c02b651cc5640a14b08df | affected |
| Linux | Linux | c33402b056de61104b6146dedbe138ca8d7ec62b < 73dce3c1d48c4662bdf3ccbde1492c2cb4bfd8ce | affected |
| Linux | Linux | 038f8b7caa74d29e020949a43ca368c93f6b29b9 < b50c9641897274c3faef5f95ac852f54b94be2e8 | affected |
| Linux | Linux | e8e07c5e25a29e2a6f119fd947f55d7a55eb8a13 < 98b15c706644bebc19d2e77ccc360cc51444f6d0 | affected |
| Linux | Linux | 4f1e50d6a9cf9c1b8c859d449b5031cacfa8404e < 325d94d16e3131b54bdf07356e4cd855e0d853fc | affected |
| Linux | Linux | 4f1e50d6a9cf9c1b8c859d449b5031cacfa8404e < 698813ba8c580efb356ace8dbf55f61dac6063a8 | affected |
| Linux | Linux | ef6cd9eeb38062a145802b7b56be7ae1090e165e | affected |
| Linux | Linux | 4.9.300 < 4.9.335 | affected |
| Linux | Linux | 4.14.265 < 4.14.301 | affected |
| Linux | Linux | 4.19.228 < 4.19.268 | affected |
| Linux | Linux | 5.4.178 < 5.4.226 | affected |
| Linux | Linux | 5.10.99 < 5.10.158 | affected |
| Linux | Linux | 5.15.22 < 5.15.82 | affected |
| Linux | Linux | 5.16.8 < 5.17 | affected |
| Linux | Linux | 5.17 | affected |
| Linux | Linux | 0 < 5.17 | unaffected |
| Linux | Linux | 4.9.335 <= 4.9.* | unaffected |
| Linux | Linux | 4.14.301 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.268 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.226 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.158 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.82 <= 5.15.* | unaffected |
| Linux | Linux | 6.0.12 <= 6.0.* | unaffected |
| Linux | Linux | 6.1 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/e46adadf19248d59af3aa6bc52e09115bf479bf7
- https://git.kernel.org/stable/c/4a95a49f26308782b4056401989ecd7768fda8fa
- https://git.kernel.org/stable/c/46bab25cc0230df60d1c02b651cc5640a14b08df
- https://git.kernel.org/stable/c/73dce3c1d48c4662bdf3ccbde1492c2cb4bfd8ce
- https://git.kernel.org/stable/c/b50c9641897274c3faef5f95ac852f54b94be2e8
- https://git.kernel.org/stable/c/98b15c706644bebc19d2e77ccc360cc51444f6d0
- https://git.kernel.org/stable/c/325d94d16e3131b54bdf07356e4cd855e0d853fc
- https://git.kernel.org/stable/c/698813ba8c580efb356ace8dbf55f61dac6063a8
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.