In the Linux kernel, the following vulnerability has been resolved:

media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE

I expect that the hardware will have limited this to 16, but just in
case it hasn't, check for this corner case.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 01 Oct 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 09 Jan 2025 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
Weaknesses CWE-770
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc1:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel

Fri, 03 Jan 2025 01:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate


Thu, 02 Jan 2025 14:45:00 +0000


cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2025-10-01T20:07:01.555Z

Reserved: 2024-08-22T01:27:53.654Z

Link: CVE-2022-49035

cve-icon Vulnrichment

Updated: 2025-10-01T15:50:05.255Z

cve-icon NVD

Status : Modified

Published: 2025-01-02T15:15:18.807

Modified: 2025-10-01T20:15:43.870

Link: CVE-2022-49035

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-01-02T00:00:00Z

Links: CVE-2022-49035 - Bugzilla

cve-icon OpenCVE Enrichment

No data.