一、 漏洞 CVE-2022-49733 基础信息
漏洞标题
ALSA: pcm: oss: 修复 SNDCTL_DSP_SYNC 处的竞争条件
来源:AIGC 神龙大模型
漏洞描述信息
在Linux内核中,已经修复了以下漏洞: ALSA: pcm: oss: 修复SNDCTL_DSP_SYNC中的竞态条件 在从OSS PCM SNDCTL_DSP_SYNC ioctl调用的snd_pcm_oss_sync()中存在一个小的竞态窗口。具体来说,该函数首先调用snd_pcm_oss_make_ready(),然后获取params_lock互斥量。如果在这两者之间,另一个线程再次设置流,则会导致不一致,并可能导致诸如OSS缓冲区空指针解引用等意外结果,这是最近通过模糊测试发现的问题。 修复方法是将snd_pcm_oss_make_ready()调用包含在相同的params_lock互斥量中,使用snd_pcm_oss_make_ready_locked()变体。
来源:AIGC 神龙大模型
CVSS信息
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
来源:AIGC 神龙大模型
漏洞类别
使用共享资源的并发执行不恰当同步问题(竞争条件)
来源:AIGC 神龙大模型
漏洞标题
ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC
来源:美国国家漏洞数据库 NVD
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC There is a small race window at snd_pcm_oss_sync() that is called from OSS PCM SNDCTL_DSP_SYNC ioctl; namely the function calls snd_pcm_oss_make_ready() at first, then takes the params_lock mutex for the rest. When the stream is set up again by another thread between them, it leads to inconsistency, and may result in unexpected results such as NULL dereference of OSS buffer as a fuzzer spotted recently. The fix is simply to cover snd_pcm_oss_make_ready() call into the same params_lock mutex with snd_pcm_oss_make_ready_locked() variant.
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
N/A
来源:美国国家漏洞数据库 NVD
二、漏洞 CVE-2022-49733 的公开POC
# POC 描述 源链接 神龙链接
三、漏洞 CVE-2022-49733 的情报信息

  • 标题: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC - kernel/git/stable/linux.git - Linux kernel stable tree
  • https://nvd.nist.gov/vuln/detail/CVE-2022-49733