CVE-2022-50051

HIGH

Linux Kernel 5.11-5.15.63, 5.16-5.19.4, 6.0 - Out-of-bounds Write in ASoC SOF Debug snprintf

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: debug: Fix potential buffer overflow by snprintf() snprintf() returns the would-be-filled size when the string overflows the given buffer size, hence using this value may result in the buffer overflow (although it's unrealistic). This patch replaces with a safer version, scnprintf() for papering over such a potential issue.

Scores

CVSS v3 7.8
EPSS 0.0018
EPSS Percentile 7.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (12)
linux/Kernel 5.11.0 - 5.15.63linux
linux/Kernel 5.16.0 - 5.19.4linux
Linux/Linux < 5.11
Linux/Linux 5.11
Linux/Linux 5.15.63 - 5.15.*
Linux/Linux 5.19.4 - 5.19.*
Linux/Linux 5b10b62989219aa527ee4fa555d1995a3b70981b - 1eb123ce985e6cf302ac6e3f19862d132d86fa8f
Linux/Linux 5b10b62989219aa527ee4fa555d1995a3b70981b - a67971a17604ae7de278fb09243432459afc51e1
Linux/Linux 5b10b62989219aa527ee4fa555d1995a3b70981b - b318b9dd2ac67f39d0338ce563879d1f59a0347a
Linux/Linux 6.0
... and 2 more
Published Jun 18, 2025
Tracked Since Feb 18, 2026