Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx() The bounds checks in snd_soc_put_volsw_sx() are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stereo controls. Add appropriate checks.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 4.9.337 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/1798b62d642e7b3d4ea3403914c3caf4e438465dPatch
- https://git.kernel.org/stable/c/18a168d85eadcfd45f015b5ecd2a97801b959e43Patch
- https://git.kernel.org/stable/c/50b5f6d4d9d2d69a7498c44fd8b26e13d73d3d98Patch
- https://git.kernel.org/stable/c/56288987843c3cb343e81e5fa51549cbaf541bd0Patch
- https://git.kernel.org/stable/c/9796d07c753164b7e6b0d7ef23fb4482840a9ef8Patch
- https://git.kernel.org/stable/c/97eea946b93961fffd29448dcda7398d0d51c4b2Patch
- https://git.kernel.org/stable/c/cf1c225f1927891ae388562b78ced7840c3723b9Patch
- https://git.kernel.org/stable/c/cf611d786796ec33da09d8c83d7d7f4e557b27dePatch
FAQ
What is CVE-2022-48951?
CVE-2022-48951 is a vulnerability with a CVSS score of 7.8 (HIGH). In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx() The bounds checks in snd_soc_put_volsw_sx() are only being ap...
How severe is CVE-2022-48951?
CVE-2022-48951 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-48951?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.