CVE-2022-49288

HIGH 7.8

ALSA: pcm: Fix races among concurrent prealloc proc writes

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix races among concurrent prealloc proc writes We have no protection against concurrent PCM buffer preallocation changes via proc files, and it may potentially lead to UAF or some weird problem. This patch applies the PCM open_mutex to the proc write operation for avoiding the racy proc writes and the PCM stream open (and further operations).

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Feb 26, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < e7786c445bb67a9a6e64f66ebd6b7215b153ff7d 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < e14dca613e0a6ddc2bf6e360f16936a9f865205b 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 37b12c16beb6f6c1c3c678c1aacbc46525c250f7 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < b560d670c87d7d40b3cf6949246fa4c7aa65a00a 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 51fce708ab8986a9879ee5da946a2cc120f1036d 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < a21d2f323b5a978dedf9ff1d50f101f85e39b3f2 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5ed8f8e3c4e59d0396b9ccf2e639711e24295bb6 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 69534c48ba8ce552ce383b3dfdb271ffe51820c3

Linux / Linux

2.6.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗