CVE-2022-48951

Updated: 2024-11-04 13:27:36.490484

Description:

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx() The bounds checks in snd_soc_put_volsw_sx() are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stereo controls. Add appropriate checks.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-11-27 11:59:35
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Needs Triage 2024-11-04 09:42:30
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Needs Triage 2024-11-04 09:42:28
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-11-27 11:59:35
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-11-27 11:59:35
Ubuntu 16.04 ELS linux 4.4.0 7.8 HIGH Released CLSA-2024:1731605761 2024-11-14 16:40:04
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.8 HIGH Released CLSA-2024:1731603700 2024-11-14 12:13:21
Ubuntu 18.04 ELS linux 4.15.0 7.8 HIGH Released CLSA-2024:1731602566 2024-11-14 16:34:48