Unrated severityNVD Advisory· Published Jun 18, 2025

clk: bcm: rpi: Prevent out-of-bounds access

CVE-2022-49946

Description

In the Linux kernel, the following vulnerability has been resolved:

The while loop in raspberrypi_discover_clocks() relies on the assumption that the id of the last clock element is zero. Because this data comes from the Videocore firmware and it doesn't guarantuee such a behavior this could lead to out-of-bounds access. So fix this by providing a sentinel element.

Affected products

Linux/Linux Kernel Rtllm-fuzzy
osv-coords81 versions
pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5 pkg:rpm/suse/kernel-livepatch-SLE15-SP5_Update_28&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Manager%20Server%204.3
< 5.14.21-150400.24.170.2+ 80 more
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150500.55.113.1.150500.6.53.1
- (no CPE)range: < 5.14.21-150500.55.113.1.150500.6.53.1
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150500.55.113.1.150500.6.53.1
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150500.55.113.1.150500.6.53.1
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150500.55.113.1.150500.6.53.1
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150400.24.170.2.150400.24.86.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 1-150500.11.3.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.15.124.1
- (no CPE)range: < 5.14.21-150400.15.124.1
- (no CPE)range: < 5.14.21-150500.13.100.2
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.15.124.1
- (no CPE)range: < 5.14.21-150400.15.124.1
- (no CPE)range: < 5.14.21-150500.13.100.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.24.170.1
- (no CPE)range: < 5.14.21-150400.24.170.2
- (no CPE)range: < 5.14.21-150500.55.113.1
- (no CPE)range: < 5.14.21-150400.24.170.2
Linux/Linuxcpe-rescue
Range: 5.9

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000