CVE-2022-49035

Advisory lineage Upstream: 0 Downstream: 10

Downstream

DEBIAN-CVE-2022-49035 SUSE-SU-2025:0201-1 SUSE-SU-2025:0201-2 SUSE-SU-2025:0202-1 SUSE-SU-2025:0203-1 SUSE-SU-2025:0229-1

Modified

Published: 02 Jan 2025, 14:38

Last modified:11 May 2026, 18:51

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (cve.org)

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

02 Jan 2025, 14:38

Published

Vulnerability first disclosed

11 May 2026, 18:51

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 6%

Techniques & Countermeasures

CWE-770•Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

Affected Systems

linux•linux
≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < 7ccb40f26cbefa1c6dfd3418bea54c9518cdbd8a | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < fc0f76dd5f116fa9291327024dda392f8b4e849c | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < a2728bf9b6c65e46468c763e3dab7e04839d4e11 | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < 4a449430ecfb199b99ba58af63c467eb53500b39 | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < 1609231f86760c1f6a429de7913dd795b9faa08c | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < cbfa26936f318b16ccf9ca31b8e8b30c0dc087bd | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < 2654e785bd4aa2439cdffbe7dc1ea30a0eddbfe4 | ≥ 1bcbf6f4b6b050eaf8f1fb1adf5c4779a3623c5b, < 93f65ce036863893c164ca410938e0968964b26c | 4.8
linux•linux_kernel
< 4.9.333 | ≥ 4.10, < 4.14.299 | ≥ 4.15, < 4.19.265 | ≥ 4.20, < 5.4.224 | ≥ 5.5, < 5.10.154 | ≥ 5.11, < 5.15.78 | ≥ 5.16, < 6.0.8 | 6.1:rc1