Lucene search
K

311 matches found

OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49251

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: va-macro: fix accessing array out of bounds for enum type Accessing enums using integer would result in array out of bounds access on platforms like aarch64 where sizeoflong is 8 compared to enum size which is 4 byt...

7.1CVSS5.6AI score0.00252EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

UBUNTU-CVE-2022-49291

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix races among concurrent hwparams and hwfree calls Currently we have neither proper check nor protection against the concurrent calls of PCM hwparams and hwfree ioctls, which may result in a UAF. Since the existing P...

7.8CVSS6.1AI score0.00294EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.7 views

The vulnerability of the ALSA kernel component in Linux operating systems, which allows a hacker to cause a service failure

The vulnerability of the ALSA kernel component in Linux operating systems is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.5AI score0.0017EPSS
Exploits0References42Affected Software6
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-53239

In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: Release resources at card release The current 6fire code tries to release the resources right after the call of usb6firechipabort. But at this moment, the card object might be still in use as we're calling...

7.8CVSS5.5AI score0.00281EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/19 5:19 p.m.1 views

CVE-2024-53045 ASoC: dapm: fix bounds checker error in dapm_widget_list_create

In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: fix bounds checker error in dapmwidgetlistcreate The widgets array in the sndsocdapmwidgetlist has a countedby attribute attached to it, which points to the numwidgets variable. This attribute is used in bounds...

7.6AI score0.002EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.2 views

ASoC: meson: axg-card: fix 'use-after-free'

...

7.8CVSS7AI score0.0025EPSS
Exploits0
CNNVD
CNNVD
added 2024/11/05 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the ASoC: qcom module's failure to properly handle pointers returned by devmkzalloc in the...

5.5CVSS6.5AI score0.00235EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/10/22 2:22 p.m.3 views

SUSE CVE-2022-48992

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: Add NULL check in BE reparenting Add NULL check in dpcmbereparent API, to handle kernel NULL pointer dereference error. The issue occurred in fuzzing test...

5.5CVSS6.3AI score0.00235EPSS
Exploits0References10
OSV
OSV
added 2024/10/21 8:15 p.m.2 views

UBUNTU-CVE-2022-48951

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in sndsocputvolswsx The bounds checks in sndsocputvolswsx are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stere...

7.8CVSS6.1AI score0.00245EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2024/09/28 2:51 a.m.4 views

SUSE CVE-2024-46862

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel-mtl-match: add missing empty item There is no linksnum in struct sndsocacpimach , and we test !link-numadr as a condition to end the loop in hdasdwmachineselect. So an empty item in struct...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References3
OSV
OSV
added 2024/09/27 1:15 p.m.3 views

DEBIAN-CVE-2024-46863

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel-lnl-match: add missing empty item There is no linksnum in struct sndsocacpimach , and we test !link-numadr as a condition to end the loop in hdasdwmachineselect. So an empty item in struct...

5.5CVSS4.7AI score0.00177EPSS
Exploits0References1
OSV
OSV
added 2024/09/18 8:15 a.m.2 views

DEBIAN-CVE-2024-46798

In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: Fix UAF for sndsocpcmruntime object When using kernel with the following extra config, - CONFIGKASAN=y - CONFIGKASANGENERIC=y - CONFIGKASANINLINE=y - CONFIGKASANVMALLOC=y - CONFIGFRAMEWARN=4096 kernel detects that...

7.8CVSS5.7AI score0.00215EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.8 views

The vulnerability of the ALSA component of the Linux operating system’s kernel, related to pointer arithmetic errors, allows attackers to trigger a service failure.

The vulnerability of the ALSA component in Linux operating systems is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.7AI score0.00257EPSS
Exploits0References30Affected Software4
OSV
OSV
added 2024/09/03 6:57 p.m.5 views

CLSA-2024-1725389829 kernel: Fix of 3 CVEs

xen/blkfront: force data bouncing when backend is untrusted CVE-2022-33742 - ALSA: Fix deadlocks with kctl removals at disconnection CVE-2024-38600 - net: fix out-of-bounds access in opsinit CVE-2024-36883...

7.1CVSS6.8AI score0.00325EPSS
Exploits0References1
Redos
Redos
added 2024/08/21 12:0 a.m.29 views

ROS-20240821-02

Vulnerability of the seg6init function in the net/ipv6/seg6.c module of the IPv6 protocol implementation of the Linux kernel is related to the reuse of previously freed memory. Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability could allow an attack...

7.8CVSS9.4AI score0.01231EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/06/26 12:24 a.m.5 views

kernel: race condition in snd_pcm_hw_free leading to use-after-free

A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hwparams. The hwfree ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges ...

7CVSS7.1AI score0.00238EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/06/22 4:9 a.m.3 views

SUSE CVE-2022-48739

In the Linux kernel, the following vulnerability has been resolved: ASoC: hdmi-codec: Fix OOB memory accesses Correct size of iecstatus array by changing it to the size of status array of the struct sndaesiec958. This fixes out-of-bounds slab read accesses made by memcpy of the hdmi-codec driver...

5.5CVSS6.5AI score0.00233EPSS
Exploits0References8
OSV
OSV
added 2024/05/21 3:15 p.m.1 views

DEBIAN-CVE-2021-47281

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix race of sndseqtimeropen The timer instance per queue is exclusive, and sndseqtimeropen should have managed the concurrent accesses. It looks as if it's checking the already existing timer instance at the beginning,...

7CVSS5.5AI score0.00234EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/05/16 12:0 a.m.4 views

The vulnerability of the run_spu_dma() function in the sound/sh/aica.c module of the Linux operating system’s audio subsystem allows a hacker to cause a service failure.

The vulnerability of the runspudma function in the sound/sh/aica.c file of the Linux operating system’s audio subsystem, ALSA, is related to the use of memory after deallocation due to concurrent access to resources race condition. Exploiting this vulnerability could allow an attacker to cause a...

7CVSS6.5AI score0.00255EPSS
Exploits0References50Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.4 views

The vulnerability of the sof_ipc3_fw_parse_ext_man() function in the sound/soc/sof/ipc3-loader.c kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the sofipc3fwparseextman function in the sound/soc/sof/ipc3-loader.c file of the Linux kernel is related to reading beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00293EPSS
Exploits0References15Affected Software3
Rows per page
Query Builder