Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2022-49946

CVE-2022-49946

UNKNOWN

clk: bcm: rpi: Prevent out-of-bounds access

Published Jun 18, 2025

Modified 8 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

clk: bcm: rpi: Prevent out-of-bounds access

The while loop in raspberrypi_discover_clocks() relies on the assumption that the id of the last clock element is zero. Because this data comes from the Videocore firmware and it doesn't guarantuee such a behavior this could lead to out-of-bounds access. So fix this by providing a sentinel element.

References

https://git.kernel.org/stable/c/bc163555603e4ae9c817675ad80d618a4cdbfa2d

https://git.kernel.org/stable/c/c8b04b731d43366824841ebdca4ac715f95e0ea4

https://git.kernel.org/stable/c/fcae47b2d23c81603b01f56cf8db63ed64599d34

https://git.kernel.org/stable/c/ff0b144d4b0a9fbd6efe4d2c0a4b6c9bae2138d2

https://www.cve.org/CVERecord?id=CVE-2022-49946

Ecosystems

Timeline

PublishedJun 18, 2025

ModifiedJun 18, 2025

CVE-2022-49946 | Mondoo Vulnerability Intelligence