ghsa-vccq-5j26-h8w6
Vulnerability from github
Published
2024-06-20 12:31
Modified
2024-06-20 12:31
Details
In the Linux kernel, the following vulnerability has been resolved:
ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx()
We don't currently validate that the values being set are within the range we advertised to userspace as being valid, do so and reject any values that are out of range.
{ "affected": [], "aliases": [ "CVE-2022-48736" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2024-06-20T12:15:11Z", "severity": null }, "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx()\n\nWe don\u0027t currently validate that the values being set are within the range\nwe advertised to userspace as being valid, do so and reject any values\nthat are out of range.", "id": "GHSA-vccq-5j26-h8w6", "modified": "2024-06-20T12:31:21Z", "published": "2024-06-20T12:31:21Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48736" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/17e16a66b4f9a310713d8599e6e1ca4a0c9fd28c" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/4cf28e9ae6e2e11a044be1bcbcfa1b0d8675fe4d" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/54abca038e287d3746dd40016514670a7f654c5c" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/6877f87579ed830f9ff6d478539074f035d04bfb" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/7659f25a80e6affb784b690df8994b79b4212fd4" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/b0a7836ecf1345814a7d8ef748fb797c520dad18" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/e09cf398e8c6db69c620b6d8073abc4377a07af5" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/fd9a23319f16e7031f0d8c98eed6e093c2927229" } ], "schema_version": "1.4.0", "severity": [] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.