7.1
CVE-2022-48738
- EPSS 0.23%
- Veröffentlicht 20.06.2024 12:15:12
- Zuletzt bearbeitet 29.09.2025 18:39:25
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
ASoC: ops: Reject out of bounds values in snd_soc_put_volsw()
In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() We don't currently validate that the values being set are within the range we advertised to userspace as being valid, do so and reject any values that are out of range.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 4.9.300
Linux ≫ Linux Kernel Version >= 4.10 < 4.14.265
Linux ≫ Linux Kernel Version >= 4.15 < 4.19.228
Linux ≫ Linux Kernel Version >= 4.20 < 5.4.178
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.99
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.22
Linux ≫ Linux Kernel Version >= 5.16 < 5.16.8
Linux ≫ Linux Kernel Version5.17 Updaterc1
Linux ≫ Linux Kernel Version5.17 Updaterc2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.14 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
https://git.kernel.org/stable/c/40f598698129b5ceaf31012f9501b775c7b6e57d
https://git.kernel.org/stable/c/586ef863c94354a7e00e5ae5ef01443d1dc99bc7
https://git.kernel.org/stable/c/65a61b1f56f5386486757930069fbdce94af08bf
https://git.kernel.org/stable/c/68fd718724284788fc5f379e0b7cac541429ece7
https://git.kernel.org/stable/c/817f7c9335ec01e0f5e8caffc4f1dcd5e458a4c0
https://git.kernel.org/stable/c/9e8895f1b3d4433f6d78aa6578e9db61ca6e6830
https://git.kernel.org/stable/c/a9394f21fba027147bf275b083c77955864c366a
https://git.kernel.org/stable/c/bb72d2dda85564c66d909108ea6903937a41679d