High severity7.8NVD Advisory· Published Sep 13, 2022· Updated Jun 17, 2026
CVE-2022-3170
CVE-2022-3170
Description
An out-of-bounds access issue was found in the Linux kernel sound subsystem. It could occur when the 'id->name' provided by the user did not end with '\0'. A privileged local user could pass a specially crafted name through ioctl() interface and crash the system or potentially escalate their privileges on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Linux/Linux kernel sound subsystemdescription
Patches
Vulnerability mechanics
References
2- github.com/torvalds/linux/commit/5934d9a0383619c14df91af8fd76261dc3de2f5fnvdPatchThird Party Advisory
- github.com/torvalds/linux/commit/6ab55ec0a938c7f943a4edba3d6514f775983887nvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.