Executive Summary

Informations
Name CVE-2022-3303 First vendor Publication 2022-09-27
Vendor Cve Last vendor Modification 2023-11-07

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Overall CVSS Score 4.7
Base Score 4.7 Environmental Score 4.7
impact SubScore 3.6 Temporal Score 4.7
Exploitabality Sub Score 1
 
Attack Vector Local Attack Complexity High
Privileges Required Low User Interaction None
Scope Unchanged Confidentiality Impact None
Integrity Impact None Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTL_DSP_SYNC ioctl. A privileged local user (root or member of the audio group) could use this flaw to crash the system, resulting in a denial of service condition

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3303

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-667 Insufficient Locking

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 8
Os 2
Os 3491

Sources (Detail)

https://lore.kernel.org/all/CAFcO6XN7JDM4xSXGhtusQfS2mSBcx50VJKwQpCq=WeLt57aa...
Source Url
DEBIAN https://www.debian.org/security/2022/dsa-5257
MISC https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id...
MLIST https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
Date Informations
2024-03-12 13:27:41
  • Multiple Updates
2024-02-02 02:36:48
  • Multiple Updates
2024-02-01 12:27:22
  • Multiple Updates
2024-01-12 02:29:06
  • Multiple Updates
2023-12-29 02:26:48
  • Multiple Updates
2023-11-22 02:26:09
  • Multiple Updates
2023-11-07 21:31:31
  • Multiple Updates
2023-09-29 13:20:39
  • Multiple Updates
2023-09-05 13:31:21
  • Multiple Updates
2023-09-05 01:26:48
  • Multiple Updates
2023-09-02 13:29:33
  • Multiple Updates
2023-09-02 01:27:12
  • Multiple Updates
2023-08-12 13:36:18
  • Multiple Updates
2023-08-12 01:26:29
  • Multiple Updates
2023-08-11 13:27:26
  • Multiple Updates
2023-08-11 01:27:19
  • Multiple Updates
2023-08-06 13:25:16
  • Multiple Updates
2023-08-06 01:26:13
  • Multiple Updates
2023-08-04 13:25:40
  • Multiple Updates
2023-08-04 01:26:33
  • Multiple Updates
2023-07-14 13:25:41
  • Multiple Updates
2023-07-14 01:26:18
  • Multiple Updates
2023-06-06 13:15:48
  • Multiple Updates
2023-05-17 13:09:09
  • Multiple Updates
2023-04-13 02:13:28
  • Multiple Updates
2023-04-07 13:10:46
  • Multiple Updates
2023-03-30 13:08:47
  • Multiple Updates
2023-03-29 02:26:19
  • Multiple Updates
2023-03-28 12:26:22
  • Multiple Updates
2023-03-25 02:13:17
  • Multiple Updates
2023-01-25 02:13:21
  • Multiple Updates
2023-01-20 02:12:51
  • Multiple Updates
2022-12-17 02:11:20
  • Multiple Updates
2022-12-03 09:27:22
  • Multiple Updates
2022-11-02 05:27:30
  • Multiple Updates
2022-10-29 00:27:31
  • Multiple Updates
2022-10-19 13:27:47
  • Multiple Updates
2022-10-19 02:09:11
  • Multiple Updates
2022-10-11 13:14:35
  • Multiple Updates
2022-10-11 01:25:19
  • Multiple Updates
2022-09-29 21:27:11
  • Multiple Updates
2022-09-28 17:27:11
  • Multiple Updates
2022-09-28 05:27:11
  • First insertion