{"id":"CVE-2022-49005","summary":"ASoC: ops: Fix bounds check for _sx controls","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: ops: Fix bounds check for _sx controls\n\nFor _sx controls the semantics of the max field is not the usual one, max\nis the number of steps rather than the maximum value. This means that our\ncheck in snd_soc_put_volsw_sx() needs to just check against the maximum\nvalue.","modified":"2026-04-11T12:43:25.243318Z","published":"2024-10-21T20:06:18.143Z","related":["SUSE-SU-2024:3983-1","SUSE-SU-2024:3985-1","SUSE-SU-2024:4082-1","SUSE-SU-2024:4131-1","SUSE-SU-2024:4364-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49005.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/325d94d16e3131b54bdf07356e4cd855e0d853fc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/46bab25cc0230df60d1c02b651cc5640a14b08df"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4a95a49f26308782b4056401989ecd7768fda8fa"},{"type":"WEB","url":"https://git.kernel.org/stable/c/698813ba8c580efb356ace8dbf55f61dac6063a8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/73dce3c1d48c4662bdf3ccbde1492c2cb4bfd8ce"},{"type":"WEB","url":"https://git.kernel.org/stable/c/98b15c706644bebc19d2e77ccc360cc51444f6d0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b50c9641897274c3faef5f95ac852f54b94be2e8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e46adadf19248d59af3aa6bc52e09115bf479bf7"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49005.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-49005"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9e5c40b5706d8aae2cf70bd7e01f0b4575a642d0"},{"fixed":"e46adadf19248d59af3aa6bc52e09115bf479bf7"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"4977491e4b3aad8567f57e2a9992d251410c1db3"},{"fixed":"4a95a49f26308782b4056401989ecd7768fda8fa"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9a12fcbf3c622f9bf6b110a873d62b0cba93972e"},{"fixed":"46bab25cc0230df60d1c02b651cc5640a14b08df"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"c33402b056de61104b6146dedbe138ca8d7ec62b"},{"fixed":"73dce3c1d48c4662bdf3ccbde1492c2cb4bfd8ce"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"038f8b7caa74d29e020949a43ca368c93f6b29b9"},{"fixed":"b50c9641897274c3faef5f95ac852f54b94be2e8"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e8e07c5e25a29e2a6f119fd947f55d7a55eb8a13"},{"fixed":"98b15c706644bebc19d2e77ccc360cc51444f6d0"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"4f1e50d6a9cf9c1b8c859d449b5031cacfa8404e"},{"fixed":"325d94d16e3131b54bdf07356e4cd855e0d853fc"},{"fixed":"698813ba8c580efb356ace8dbf55f61dac6063a8"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"ef6cd9eeb38062a145802b7b56be7ae1090e165e"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49005.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.9.335"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.10.0"},{"fixed":"4.14.301"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.15.0"},{"fixed":"4.19.268"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.20.0"},{"fixed":"5.4.226"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.158"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.82"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.0.12"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49005.json"}}],"schema_version":"1.7.5"}