7.8

CVE-2022-49288

ALSA: pcm: Fix races among concurrent prealloc proc writes

In the Linux kernel, the following vulnerability has been resolved:

ALSA: pcm: Fix races among concurrent prealloc proc writes

We have no protection against concurrent PCM buffer preallocation
changes via proc files, and it may potentially lead to UAF or some
weird problem.  This patch applies the PCM open_mutex to the proc
write operation for avoiding the racy proc writes and the PCM stream
open (and further operations).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.14.279
LinuxLinux Kernel Version >= 4.15 < 4.19.243
LinuxLinux Kernel Version >= 4.20 < 5.4.193
LinuxLinux Kernel Version >= 5.5 < 5.10.109
LinuxLinux Kernel Version >= 5.11 < 5.15.32
LinuxLinux Kernel Version >= 5.16 < 5.16.18
LinuxLinux Kernel Version >= 5.17 < 5.17.1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.27% 0.183
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/37b12c16beb6f6c1c3c678c1aacbc46525c250f7
Patch
https://git.kernel.org/stable/c/51fce708ab8986a9879ee5da946a2cc120f1036d
Patch
https://git.kernel.org/stable/c/5ed8f8e3c4e59d0396b9ccf2e639711e24295bb6
Patch
https://git.kernel.org/stable/c/69534c48ba8ce552ce383b3dfdb271ffe51820c3
Patch
https://git.kernel.org/stable/c/a21d2f323b5a978dedf9ff1d50f101f85e39b3f2
Patch
https://git.kernel.org/stable/c/b560d670c87d7d40b3cf6949246fa4c7aa65a00a
Patch
https://git.kernel.org/stable/c/e14dca613e0a6ddc2bf6e360f16936a9f865205b
Patch
https://git.kernel.org/stable/c/e7786c445bb67a9a6e64f66ebd6b7215b153ff7d
Patch