CVE-2022-49946

Summary

In the Linux kernel, the following vulnerability has been resolved:

clk: bcm: rpi: Prevent out-of-bounds access

The while loop in raspberrypi_discover_clocks() relies on the assumption that the id of the last clock element is zero. Because this data comes from the Videocore firmware and it doesn't guarantuee such a behavior this could lead to out-of-bounds access. So fix this by providing a sentinel element.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux93d2725affd65686792f4b57e49ef660f3c8c0f9 < fcae47b2d23c81603b01f56cf8db63ed64599d34affected
LinuxLinux93d2725affd65686792f4b57e49ef660f3c8c0f9 < ff0b144d4b0a9fbd6efe4d2c0a4b6c9bae2138d2affected
LinuxLinux93d2725affd65686792f4b57e49ef660f3c8c0f9 < c8b04b731d43366824841ebdca4ac715f95e0ea4affected
LinuxLinux93d2725affd65686792f4b57e49ef660f3c8c0f9 < bc163555603e4ae9c817675ad80d618a4cdbfa2daffected
LinuxLinux5.9affected
LinuxLinux0 < 5.9unaffected
LinuxLinux5.10.142 <= 5.10.*unaffected
LinuxLinux5.15.66 <= 5.15.*unaffected
LinuxLinux5.19.8 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References