In the Linux kernel, the following vulnerability has been resolved:
ALSA: hda: Fix possible null-ptr-deref when assigning a stream
While AudioDSP drivers assign streams exclusively of HOST or LINK type,
nothing blocks a user to attempt to assign a COUPLED stream. As
supplied substream instance may be a stub, what is the case when
code-loading, such scenario ends with null-ptr-deref.
Metrics
Affected Vendors & Products
References
History
Thu, 12 Sep 2024 08:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-05-21T15:31:17.025Z
Updated: 2024-09-11T17:32:54.863Z
Reserved: 2024-05-21T15:19:24.247Z
Link: CVE-2023-52806
Vulnrichment
Updated: 2024-08-02T23:11:36.085Z
NVD
Status : Analyzed
Published: 2024-05-21T16:15:18.963
Modified: 2024-05-24T01:14:20.003
Link: CVE-2023-52806
Redhat