CVE-2022-3303

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-3303

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-3303.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-3303

Downstream

DEBIAN-CVE-2022-3303

DLA-3173-1

DSA-5257-1

OESA-2022-1985

OESA-2022-1991

OESA-2022-2015

SUSE-SU-2022:3584-1

SUSE-SU-2022:3585-1

SUSE-SU-2022:3587-1

SUSE-SU-2022:3599-1

SUSE-SU-2022:3609-1

SUSE-SU-2022:3688-1

SUSE-SU-2022:3693-1

SUSE-SU-2022:3704-1

SUSE-SU-2022:3775-1

SUSE-SU-2022:3779-1

SUSE-SU-2022:3809-1

SUSE-SU-2022:3810-1

SUSE-SU-2022:3844-1

SUSE-SU-2022:4617-1

SUSE-SU-2023:0416-1

SUSE-SU-2025:0983-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025:1293-1

UBUNTU-CVE-2022-3303

USN-5791-1

USN-5791-2

USN-5791-3

USN-5792-1

USN-5792-2

USN-5815-1

USN-5877-1

USN-6001-1

USN-6013-1

USN-6014-1

USN-6071-1

USN-6252-1

Related

Published

2022-09-27T23:15:15Z

Modified

2025-08-09T20:01:27Z

Severity

4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTLDSPSYNC ioctl. A privileged local user (root or member of the audio group) could use this flaw to crash the system, resulting in a denial of service condition

References

Affected packages