CVE-2022-49250

ASoC: codecs: rx-macro: fix accessing compander for aux

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: rx-macro: fix accessing compander for aux AUX interpolator does not have compander, so check before accessing
compander data for this. Without this checkan array of out bounds access will be made in
comp_enabled[] array.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-02-26 CVE Reserved
2025-02-26 CVE Published
2025-02-26 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (5)

URL	Tag	Source
https://git.kernel.org/stable/c/4f692926f562ff48abfcca6b16f36ff8d57473b6	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/9208ecc703b5ed5b12d7ea13c79207f4c8456638	2022-04-08
https://git.kernel.org/stable/c/87a2b44cb3005d30c3a72234d1e47b03ae3bb29a	2022-04-08
https://git.kernel.org/stable/c/6aa8ef9535dbd561293406608ebe791627b10196	2022-04-08
https://git.kernel.org/stable/c/42c709c4e1ce4c136891530646c9abd5dff3524f	2022-02-23

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.15.33 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.15.33"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.16.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.16.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.17.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.17.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.18"		en		Affected