CVE-2024-23196

🗓️ 05 Feb 2024 07:22:39Reported by AnolisType

A race condition found in the Linux kernel's sound/hda device driver can result in a null pointer dereference issue

Reporter	Title	Published	Views	Family All 23
AstraLinux	Astra Linux - уязвимость в linux, linux-5.10, linux-5.15	20 May 202605:53	–	astralinux
Circl	CVE-2024-23196	5 Feb 202409:31	–	circl
CNNVD	Linux kernel code issue vulnerability	5 Feb 202400:00	–	cnnvd
Cvelist	CVE-2024-23196 Race condition vulnerability in Linux kernel sound/hda snd_hdac_regmap_sync	5 Feb 202407:22	–	cvelist
Debian CVE	CVE-2024-23196	5 Feb 202407:22	–	debiancve
EUVD	EUVD-2024-20715	3 Oct 202520:07	–	euvd
NVD	CVE-2024-23196	5 Feb 202408:15	–	nvd
OSV	DEBIAN-CVE-2024-23196	5 Feb 202408:15	–	osv
OSV	OESA-2024-1241 kernel security update	1 Mar 202411:07	–	osv
OSV	OESA-2024-1242 kernel security update	1 Mar 202411:07	–	osv

NVD

Node

linux linux_kernelRange≤5.5.19

linux linux_kernelRange6.0–6.4.16

[
  {
    "collectionURL": "https://kernel.org/",
    "defaultStatus": "unaffected",
    "modules": [
      "sound/hda"
    ],
    "packageName": "kernel",
    "platforms": [
      "Linux",
      "x86",
      "ARM"
    ],
    "product": "Linux kernel",
    "programFiles": [
      "https://gitee.com/anolis/cloud-kernel/blob/devel-5.10/sound/hda/hdac_regmap.c"
    ],
    "repo": "https://gitee.com/anolis/cloud-kernel.git",
    "vendor": "Linux",
    "versions": [
      {
        "lessThan": "v6.5-rc1",
        "status": "affected",
        "version": "v5.6-rc1",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.openanolis.cn/show_bug.cgi

21 Nov 2024 08:57Current

4.6Medium risk

Vulners AI Score4.6

CVSS 3.14.7 - 5.3

EPSS0.00019

SSVC