CVE-2022-49498
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49498
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49498.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49498
- Downstream
- Related
- Published
- 2025-02-26T07:01:25Z
- Modified
- 2025-08-09T20:01:26Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ALSA: pcm: Check for null pointer of pointer substream before dereferencing it
Pointer substream is being dereferenced on the assignment of pointer card before substream is being null checked with the macro PCMRUNTIMECHECK. Although PCMRUNTIMECHECK calls BUG_ON, it still is useful to perform the the pointer check before card is assigned.
- References
-
- https://git.kernel.org/stable/c/011b559be832194f992f73d6c0d5485f5925a10b
- https://git.kernel.org/stable/c/1f2e28857be1e5c7db39bbc221332215fc5467e3
- https://git.kernel.org/stable/c/7784d22f81a29df2ec57ca90d54f93a35cbcd1a2
- https://git.kernel.org/stable/c/b2421a196cb0911ea95aec1050a0b830464c8fa6
- https://git.kernel.org/stable/c/b41ef7ad9238c22aa2e142f5ce4ce1a1a0d48123
- https://git.kernel.org/stable/c/f2c68c52898f623fe84518da4606538d193b0cca