CVE-2022-49733

🗓️ 02 Mar 2025 14:30:02Reported by LinuxType

Vulnerability CVE-2022-49733 fixed race condition in ALSA pcm OSS causing potential NULL dereference.

Reporter	Title	Published	Views	Family All 58
AstraLinux	Astra Linux - уязвимость в linux-5.10, linux	20 May 202605:53	–	astralinux
Circl	CVE-2022-49733	2 Mar 202515:32	–	circl
CNNVD	Linux kernel 安全漏洞	2 Mar 202500:00	–	cnnvd
Cvelist	CVE-2022-49733 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC	2 Mar 202514:30	–	cvelist
Debian CVE	CVE-2022-49733	2 Mar 202514:30	–	debiancve
EUVD	EUVD-2025-5864	3 Oct 202520:07	–	euvd
NVD	CVE-2022-49733	2 Mar 202515:15	–	nvd
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:0983-1)	24 Mar 202500:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:1293-1)	18 Apr 202500:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2026:0385-1)	6 Feb 202600:00	–	openvas

NVD

Vulners

CNA

Node

linux linux_kernelRange<5.4.215

linux linux_kernelRange5.5–5.10.148

linux linux_kernelRange5.11–5.15.68

linux linux_kernelRange5.16–5.19.9

linux linux_kernelMatch6.0rc1

linux linux_kernelMatch6.0rc2

linux linux_kernelMatch6.0rc3

linux linux_kernelMatch6.0rc4

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "sound/core/oss/pcm_oss.c"
    ],
    "versions": [
      {
        "version": "e3a5d59a17e9a42e3f3e0e37342b2679bab2ff43",
        "lessThan": "4051324a6dafd7053c74c475e80b3ba10ae672b0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3a5d59a17e9a42e3f3e0e37342b2679bab2ff43",
        "lessThan": "fce793a056c604b41a298317cf704dae255f1b36",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3a5d59a17e9a42e3f3e0e37342b2679bab2ff43",
        "lessThan": "8015ef9e8a0ee5cecfd0cb6805834d007ab26f86",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3a5d59a17e9a42e3f3e0e37342b2679bab2ff43",
        "lessThan": "723ac5ab2891b6c10dd6cc78ef5456af593490eb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e3a5d59a17e9a42e3f3e0e37342b2679bab2ff43",
        "lessThan": "8423f0b6d513b259fdab9c9bf4aaa6188d054c2d",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "sound/core/oss/pcm_oss.c"
    ],
    "versions": [
      {
        "version": "2.6.20",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "2.6.20",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.4.215",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.148",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.68",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.19.9",
        "lessThanOrEqual": "5.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/4051324a6dafd7053c74c475e80b3ba10ae672b0
git	www.git.kernel.org/stable/c/8015ef9e8a0ee5cecfd0cb6805834d007ab26f86
git	www.git.kernel.org/stable/c/fce793a056c604b41a298317cf704dae255f1b36
git	www.git.kernel.org/stable/c/8423f0b6d513b259fdab9c9bf4aaa6188d054c2d
git	www.git.kernel.org/stable/c/723ac5ab2891b6c10dd6cc78ef5456af593490eb

11 May 2026 19:05Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.14.7

EPSS0.00037

SSVC

cve-2022-49733 alsa vulnerability race condition null dereference fix