← voltar
CVE-2022-3170

CVE-2022-3170

EPSS 0.2%CWE-125
An out-of-bounds access issue was found in the Linux kernel sound subsystem. It could occur when the 'id->name' provided by the user did not end with '\0'. A privileged local user could pass a specially crafted name through ioctl() interface and crash the system or potentially escalate their privileges on the system.
Produtos afetados
n/a · kernel

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/torvalds/linux/commit/5934d9a0383619c14df91af8fd76261dc3de2f5fhttps://github.com/torvalds/linux/commit/6ab55ec0a938c7f943a4edba3d6514f775983887