CVE-2022-49249
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49249
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49249.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49249
- Downstream
- Related
- Published
- 2025-02-26T01:56:07Z
- Modified
- 2025-10-21T09:40:51.136618Z
- Summary
- ASoC: codecs: wc938x: fix accessing array out of bounds for enum type
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ASoC: codecs: wc938x: fix accessing array out of bounds for enum type
Accessing enums using integer would result in array out of bounds access on platforms like aarch64 where sizeof(long) is 8 compared to enum size which is 4 bytes.
Fix this by using enumerated items instead of integers.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/adafea71b49ec4dbc44e0b84ec6eb602004a7a08
- https://git.kernel.org/stable/c/cc587b7c8fbbe128f6bd0dad025a0caea5e6d164
- https://git.kernel.org/stable/c/d09aee1b1da196be11ed86dd4897f228f2487613
- https://git.kernel.org/stable/c/f03c0c94186d5876857132d97e28f20cdc100bdc
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede8ba1e05bdc016700c85fad559a812c2e795442fFixedadafea71b49ec4dbc44e0b84ec6eb602004a7a08
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede8ba1e05bdc016700c85fad559a812c2e795442fFixedf03c0c94186d5876857132d97e28f20cdc100bdc
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede8ba1e05bdc016700c85fad559a812c2e795442fFixedd09aee1b1da196be11ed86dd4897f228f2487613
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede8ba1e05bdc016700c85fad559a812c2e795442fFixedcc587b7c8fbbe128f6bd0dad025a0caea5e6d164
Affected versions
v5.*
v5.13
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.4
v5.15.5
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.16.1
v5.16.10
v5.16.11
v5.16.12
v5.16.13
v5.16.14
v5.16.15
v5.16.16
v5.16.17
v5.16.18
v5.16.2
v5.16.3
v5.16.4
v5.16.5
v5.16.6
v5.16.7
v5.16.8
v5.16.9
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.17.1
Database specific
vanir_signatures
[
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f03c0c94186d5876857132d97e28f20cdc100bdc",
"digest": {
"line_hashes": [
"209041214231921186763145606196813552951",
"219141587285379479032224041017357613437",
"24395144735082156975573185784072859206",
"126999168134702585357674131344320985741",
"2877735060409295130255947766257338156",
"319167533242486518653212238697009271777",
"87666355354462605997773132841249683915",
"37467924317812619589507359391500787445"
],
"threshold": 0.9
},
"target": {
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-2a857756",
"signature_version": "v1",
"signature_type": "Line"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@adafea71b49ec4dbc44e0b84ec6eb602004a7a08",
"digest": {
"function_hash": "170359084109114668093113865557950346653",
"length": 284.0
},
"target": {
"function": "wcd938x_tx_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-2dad71a7",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f03c0c94186d5876857132d97e28f20cdc100bdc",
"digest": {
"function_hash": "138634903455071566901209304983978441301",
"length": 197.0
},
"target": {
"function": "wcd938x_rx_hph_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-46972a8a",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@adafea71b49ec4dbc44e0b84ec6eb602004a7a08",
"digest": {
"function_hash": "138634903455071566901209304983978441301",
"length": 197.0
},
"target": {
"function": "wcd938x_rx_hph_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-53651bb2",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@adafea71b49ec4dbc44e0b84ec6eb602004a7a08",
"digest": {
"line_hashes": [
"209041214231921186763145606196813552951",
"219141587285379479032224041017357613437",
"24395144735082156975573185784072859206",
"126999168134702585357674131344320985741",
"2877735060409295130255947766257338156",
"319167533242486518653212238697009271777",
"87666355354462605997773132841249683915",
"37467924317812619589507359391500787445"
],
"threshold": 0.9
},
"target": {
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-5c784623",
"signature_version": "v1",
"signature_type": "Line"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cc587b7c8fbbe128f6bd0dad025a0caea5e6d164",
"digest": {
"line_hashes": [
"209041214231921186763145606196813552951",
"219141587285379479032224041017357613437",
"24395144735082156975573185784072859206",
"126999168134702585357674131344320985741",
"2877735060409295130255947766257338156",
"319167533242486518653212238697009271777",
"87666355354462605997773132841249683915",
"37467924317812619589507359391500787445"
],
"threshold": 0.9
},
"target": {
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-6de79966",
"signature_version": "v1",
"signature_type": "Line"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f03c0c94186d5876857132d97e28f20cdc100bdc",
"digest": {
"function_hash": "170359084109114668093113865557950346653",
"length": 284.0
},
"target": {
"function": "wcd938x_tx_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-7462f881",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d09aee1b1da196be11ed86dd4897f228f2487613",
"digest": {
"function_hash": "170359084109114668093113865557950346653",
"length": 284.0
},
"target": {
"function": "wcd938x_tx_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-75d0cd64",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cc587b7c8fbbe128f6bd0dad025a0caea5e6d164",
"digest": {
"function_hash": "138634903455071566901209304983978441301",
"length": 197.0
},
"target": {
"function": "wcd938x_rx_hph_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-8c1727df",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cc587b7c8fbbe128f6bd0dad025a0caea5e6d164",
"digest": {
"function_hash": "170359084109114668093113865557950346653",
"length": 284.0
},
"target": {
"function": "wcd938x_tx_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-9efe0dd6",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d09aee1b1da196be11ed86dd4897f228f2487613",
"digest": {
"function_hash": "138634903455071566901209304983978441301",
"length": 197.0
},
"target": {
"function": "wcd938x_rx_hph_mode_get",
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-dbfbd10e",
"signature_version": "v1",
"signature_type": "Function"
},
{
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d09aee1b1da196be11ed86dd4897f228f2487613",
"digest": {
"line_hashes": [
"209041214231921186763145606196813552951",
"219141587285379479032224041017357613437",
"24395144735082156975573185784072859206",
"126999168134702585357674131344320985741",
"2877735060409295130255947766257338156",
"319167533242486518653212238697009271777",
"87666355354462605997773132841249683915",
"37467924317812619589507359391500787445"
],
"threshold": 0.9
},
"target": {
"file": "sound/soc/codecs/wcd938x.c"
},
"id": "CVE-2022-49249-f78f0872",
"signature_version": "v1",
"signature_type": "Line"
}
]