CVE-2022-49045 Information

Mar 01, 2025 cve

Description

In the Linux kernel the following vulnerability has been resolved:

ALSA: pcm: Test for \silence\ field in struct \pcm_format_data\n Syzbot reports \KASAN: null-ptr-deref Write in snd_pcm_format_set_silence.[1]

It is due to missing validation of the \silence\ field of struct \pcm_format_data\ in \pcm_formats\ array.

Add a test for valid \pat\ and if it is not so return -EINVAL.

[1] https://lore.kernel.org/lkml/000000000000d188ef05dc2c7279@google.com/

Reference

https://git.kernel.org/stable/c/2f7a26abb8241a0208c68d22815aa247c5ddacab https://git.kernel.org/stable/c/377a80ca6590f40ec8a85227b889a5d399fe26c3 https://git.kernel.org/stable/c/63038f6e96a77a0abf8083649c53e6a72c1a0124 https://git.kernel.org/stable/c/77af45df08768401602472f3e3879dce14f55497 https://git.kernel.org/stable/c/912797e54c99a98f0722f21313e13a3938bb6dba https://git.kernel.org/stable/c/97345c90235b1bb7661e7a428d9dcb96b1d7f5d4 https://git.kernel.org/stable/c/c3b2f23bfe5452b00eb1c842bc71098449e4ad9f https://git.kernel.org/stable/c/eb04e3112a3516e483d60a9af9762961702a6c1b

Share on: