CVE-2022-48717
ASoC: max9759: fix underflow in speaker_gain_control_put()
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
20 jun 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved:
ASoC: max9759: fix underflow in speaker_gain_control_put()
Check for negative values of "priv->gain" to prevent an out of bounds
access. The concern is that these might come from the user via:
-> snd_ctl_elem_write_user()
-> snd_ctl_elem_write()
-> kctl->put()
Productos afectados
Linux · LinuxReferencias
https://git.kernel.org/stable/c/4c907bcd9dcd233da6707059d777ab389dcbd964https://git.kernel.org/stable/c/5a45448ac95b715173edb1cd090ff24b6586d921https://git.kernel.org/stable/c/71e60c170105d153e34d01766c1e4db26a4b24cchttps://git.kernel.org/stable/c/a0f49d12547d45ea8b0f356a96632dd503941c1ehttps://git.kernel.org/stable/c/baead410e5db49e962a67fffc17ac30e44b50b7chttps://git.kernel.org/stable/c/f114fd6165dfb52520755cc4d1c1dfbd447b88b6