CVE-2022-48717

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-48717
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48717.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-48717
Downstream
Related
Published
2024-06-20T11:13:09.959Z
Modified
2026-05-28T03:52:49.704839393Z
Summary
ASoC: max9759: fix underflow in speaker_gain_control_put()
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: max9759: fix underflow in speakergaincontrol_put()

Check for negative values of "priv->gain" to prevent an out of bounds access. The concern is that these might come from the user via: -> sndctlelemwriteuser() -> sndctlelem_write() -> kctl->put()

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48717.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
fa8d915172b8c10ec0734c4021e99e9705023b07
Fixed
a0f49d12547d45ea8b0f356a96632dd503941c1e
Fixed
71e60c170105d153e34d01766c1e4db26a4b24cc
Fixed
5a45448ac95b715173edb1cd090ff24b6586d921
Fixed
baead410e5db49e962a67fffc17ac30e44b50b7c
Fixed
f114fd6165dfb52520755cc4d1c1dfbd447b88b6
Fixed
4c907bcd9dcd233da6707059d777ab389dcbd964

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48717.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.17.0
Fixed
4.19.228
Type
ECOSYSTEM
Events
Introduced
4.20.0
Fixed
5.4.178
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.99
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.22
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
5.16.8

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48717.json"