{"id":"CVE-2022-3303","details":"A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTL_DSP_SYNC ioctl. A privileged local user (root or member of the audio group) could use this flaw to crash the system, resulting in a denial of service condition","modified":"2026-05-15T11:54:34.941457993Z","published":"2022-09-27T00:00:00Z","related":["SUSE-SU-2022:3584-1","SUSE-SU-2022:3585-1","SUSE-SU-2022:3587-1","SUSE-SU-2022:3599-1","SUSE-SU-2022:3609-1","SUSE-SU-2022:3688-1","SUSE-SU-2022:3693-1","SUSE-SU-2022:3704-1","SUSE-SU-2022:3775-1","SUSE-SU-2022:3779-1","SUSE-SU-2022:3809-1","SUSE-SU-2022:3810-1","SUSE-SU-2022:3844-1","SUSE-SU-2022:4617-1","SUSE-SU-2023:0416-1","SUSE-SU-2025:0983-1","SUSE-SU-2025:1027-1","SUSE-SU-2025:1176-1","SUSE-SU-2025:1183-1","SUSE-SU-2025:1194-1","SUSE-SU-2025:1241-1","SUSE-SU-2025:1263-1","SUSE-SU-2025:1293-1","SUSE-SU-2026:0385-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/3xxx/CVE-2022-3303.json","cna_assigner":"redhat","cwe_ids":["CWE-667"]},"references":[{"type":"WEB","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8423f0b6d513b259fdab9c9bf4aaa6188d054c2d"},{"type":"WEB","url":"https://lore.kernel.org/all/CAFcO6XN7JDM4xSXGhtusQfS2mSBcx50VJKwQpCq=WeLt57aaZA%40mail.gmail.com/"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/3xxx/CVE-2022-3303.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3303"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5257"},{"type":"ARTICLE","url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}