SB20251001149 - Buffer overflow in Linux kernel clk samsung driver
Published: October 1, 2025 Updated: October 27, 2025
Security Bulletin ID
SB20251001149
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2022-50449)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the _samsung_clk_register_pll() function in drivers/clk/samsung/clk-pll.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/2e8dc0626fe86ae08914478dec1419618c557bc0
- https://git.kernel.org/stable/c/4887ec922e407b4feaf060c7b099482a5c52dee3
- https://git.kernel.org/stable/c/4e501a31af8efa593a2f003637b56d00b75dca23
- https://git.kernel.org/stable/c/5174e5b0d1b669a489524192b6adcbb3c54ebc72
- https://git.kernel.org/stable/c/7b738276a596fa101d320591e9fa84ea0fc3f713
- https://git.kernel.org/stable/c/a00b4e0fa27317957536abf8f5d6a96d6cb9d9be
- https://git.kernel.org/stable/c/a35323218ff32782d051d2643912311a22e07b6a
- https://git.kernel.org/stable/c/da13355bb9961316d124f94dfc7a1385d0fb035a
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.163