PT-2025-8179 · Linux+2 · Linux Kernel+2

Srinivas Kandagatla

Published

2022-02-23

Updated

2025-09-22

CVE-2022-49251

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, related to the ASoC: codecs: va-macro component. The issue arises when accessing enums using integers, which can lead to array out of bounds access. This problem is particularly pronounced on platforms such as aarch64, where the size of long integers is 8 bytes, compared to the enum size of 4 bytes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2026-03931

CVE-2022-49251

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8179 · Linux+2 · Linux Kernel+2

CVE-2022-49251

Weakness Enumeration

Related Identifiers

Affected Products

References · 1334