Skip to main content

Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

CVE-2022-49946

UNKNOWN

clk: bcm: rpi: Prevent out-of-bounds access

Published Jun 18, 2025

Modified 7 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

clk: bcm: rpi: Prevent out-of-bounds access

The while loop in raspberrypi_discover_clocks() relies on the assumption that the id of the last clock element is zero. Because this data comes from the Videocore firmware and it doesn't guarantuee such a behavior this could lead to out-of-bounds access. So fix this by providing a sentinel element.

References

WEBhttps://git.kernel.org/stable/c/bc163555603e4ae9c817675ad80d618a4cdbfa2d WEBhttps://git.kernel.org/stable/c/c8b04b731d43366824841ebdca4ac715f95e0ea4 WEBhttps://git.kernel.org/stable/c/fcae47b2d23c81603b01f56cf8db63ed64599d34 WEBhttps://git.kernel.org/stable/c/ff0b144d4b0a9fbd6efe4d2c0a4b6c9bae2138d2 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2022-49946

Ecosystems

Timeline

PublishedJun 18, 2025

ModifiedJun 18, 2025

CVE-2022-49946 | Mondoo Vulnerability Intelligence