CVE-2022-49545

Опубликовано: 26 фев. 2025

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

ALSA: usb-audio: Cancel pending work at closing a MIDI substream

At closing a USB MIDI output substream, there might be still a pending work, which would eventually access the rawmidi runtime object that is being released. For fixing the race, make sure to cancel the pending work at closing.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 5.10.121 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.11 (включая) до 5.15.46 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.16 (включая) до 5.17.14 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.18 (включая) до 5.18.3 (исключая)

EPSS

Процентиль: 17%

0.00054

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2022-49545

CVSS3: 5.5

ubuntu

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Cancel pending work at closing a MIDI substream At closing a USB MIDI output substream, there might be still a pending work, which would eventually access the rawmidi runtime object that is being released. For fixing the race, make sure to cancel the pending work at closing.

CVE-2022-49545

CVSS3: 5.5

redhat

12 месяцев назад

CVE-2022-49545

CVSS3: 5.5

debian

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: A ...

SUSE-SU-2025:02146-1

suse-cvrf

8 месяцев назад

Security update for the Linux Kernel (Live Patch 54 for SLE 15 SP3)

SUSE-SU-2025:02098-1

suse-cvrf

8 месяцев назад

Security update for the Linux Kernel (Live Patch 55 for SLE 15 SP3)

EPSS

Процентиль: 17%

0.00054

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo