CVE-2022-49792

HIGH

Linux Kernel 5.8-5.10.156, 5.11-5.15.80, 5.16-6.0.10 - Out-of-bounds Read in IIO ADC MP2629 Maps

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: iio: adc: mp2629: fix potential array out of bound access Add sentinel at end of maps to avoid potential array out of bound access in iio core.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/d95b85c5084ad70011988861ee864529eefa1da0

Patch

https://git.kernel.org/stable/c/1678d4abb2dc2ca3b05b998a9d88616976e4f947

Patch

https://git.kernel.org/stable/c/399b2105a2240e730b9f3880bd8f154247539aa7

Patch

https://git.kernel.org/stable/c/ca1547ab15f48dc81624183ae17a2fd1bad06dfc

Scores

CVSS v3 7.1

EPSS 0.0016

EPSS Percentile 5.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (15)

linux/Kernel 5.11.0 - 5.15.80linux

linux/Kernel 5.16.0 - 6.0.10linux

linux/Kernel 5.8.0 - 5.10.156linux

Linux/Linux < 5.8

Linux/Linux 5.10.156 - 5.10.*

Linux/Linux 5.15.80 - 5.15.*

Linux/Linux 5.8

Linux/Linux 6.0.10 - 6.0.*

Linux/Linux 6.1

Linux/Linux 7abd9fb6468225f5c7f83149ce279cc1a912a68a - 1678d4abb2dc2ca3b05b998a9d88616976e4f947

... and 5 more

Published May 01, 2025

Tracked Since Feb 18, 2026