CVE-2022-49250

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49250
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49250.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49250
Downstream
Related
Published
2025-02-26T01:56:07Z
Modified
2025-10-21T09:36:50.123118Z
Summary
ASoC: codecs: rx-macro: fix accessing compander for aux
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: codecs: rx-macro: fix accessing compander for aux

AUX interpolator does not have compander, so check before accessing compander data for this.

Without this checkan array of out bounds access will be made in comp_enabled[] array.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4f692926f562ff48abfcca6b16f36ff8d57473b6
Fixed
9208ecc703b5ed5b12d7ea13c79207f4c8456638
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4f692926f562ff48abfcca6b16f36ff8d57473b6
Fixed
87a2b44cb3005d30c3a72234d1e47b03ae3bb29a
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4f692926f562ff48abfcca6b16f36ff8d57473b6
Fixed
6aa8ef9535dbd561293406608ebe791627b10196
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4f692926f562ff48abfcca6b16f36ff8d57473b6
Fixed
42c709c4e1ce4c136891530646c9abd5dff3524f

Affected versions

v5.*

v5.11
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.4
v5.15.5
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.16.1
v5.16.10
v5.16.11
v5.16.12
v5.16.13
v5.16.14
v5.16.15
v5.16.16
v5.16.17
v5.16.18
v5.16.2
v5.16.3
v5.16.4
v5.16.5
v5.16.6
v5.16.7
v5.16.8
v5.16.9
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.17.1

Database specific

vanir_signatures

[
    {
        "id": "CVE-2022-49250-2d86d7f0",
        "target": {
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "line_hashes": [
                "117621949373811819053259354410238830179",
                "159522516683782329011453361466696897040",
                "172261034044915078641264150145172916011"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87a2b44cb3005d30c3a72234d1e47b03ae3bb29a",
        "signature_type": "Line"
    },
    {
        "id": "CVE-2022-49250-5bb75783",
        "target": {
            "function": "rx_macro_load_compander_coeff",
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "length": 664.0,
            "function_hash": "10155586395046670777202926247097010598"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9208ecc703b5ed5b12d7ea13c79207f4c8456638",
        "signature_type": "Function"
    },
    {
        "id": "CVE-2022-49250-7182d6c6",
        "target": {
            "function": "rx_macro_load_compander_coeff",
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "length": 664.0,
            "function_hash": "10155586395046670777202926247097010598"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6aa8ef9535dbd561293406608ebe791627b10196",
        "signature_type": "Function"
    },
    {
        "id": "CVE-2022-49250-92071933",
        "target": {
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "line_hashes": [
                "117621949373811819053259354410238830179",
                "159522516683782329011453361466696897040",
                "172261034044915078641264150145172916011"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6aa8ef9535dbd561293406608ebe791627b10196",
        "signature_type": "Line"
    },
    {
        "id": "CVE-2022-49250-a313da6b",
        "target": {
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "line_hashes": [
                "117621949373811819053259354410238830179",
                "159522516683782329011453361466696897040",
                "172261034044915078641264150145172916011"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9208ecc703b5ed5b12d7ea13c79207f4c8456638",
        "signature_type": "Line"
    },
    {
        "id": "CVE-2022-49250-a80c50ed",
        "target": {
            "function": "rx_macro_load_compander_coeff",
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "length": 664.0,
            "function_hash": "10155586395046670777202926247097010598"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87a2b44cb3005d30c3a72234d1e47b03ae3bb29a",
        "signature_type": "Function"
    },
    {
        "id": "CVE-2022-49250-d5ed8f8a",
        "target": {
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "line_hashes": [
                "117621949373811819053259354410238830179",
                "159522516683782329011453361466696897040",
                "172261034044915078641264150145172916011"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@42c709c4e1ce4c136891530646c9abd5dff3524f",
        "signature_type": "Line"
    },
    {
        "id": "CVE-2022-49250-ed6c6d76",
        "target": {
            "function": "rx_macro_load_compander_coeff",
            "file": "sound/soc/codecs/lpass-rx-macro.c"
        },
        "digest": {
            "length": 664.0,
            "function_hash": "10155586395046670777202926247097010598"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@42c709c4e1ce4c136891530646c9abd5dff3524f",
        "signature_type": "Function"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.12.0
Fixed
5.15.33
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
5.16.19
Type
ECOSYSTEM
Events
Introduced
5.17.0
Fixed
5.17.2