CVE-2023-52988 ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path()

🗓️ 27 Mar 2025 16:43:25Reported by LinuxType

Vulnerability CVE-2023-52988 in Linux kernel resolved to avoid array out-of-bounds issue.

Reporter	Title	Published	Views	Family All 191
AstraLinux	Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15	3 May 202623:59	–	astralinux
BDU FSTEC	The vulnerability of the add_secret_dac_path() function in the Linux operating system allows a hacker to trigger a service failure.	2 Jun 202500:00	–	bdu_fstec
CNNVD	Linux kernel 安全漏洞	27 Mar 202500:00	–	cnnvd
CVE	CVE-2023-52988	27 Mar 202516:43	–	cve
Debian CVE	CVE-2023-52988	27 Mar 202516:43	–	debiancve
EUVD	EUVD-2023-59732	3 Oct 202520:07	–	euvd
NVD	CVE-2023-52988	27 Mar 202517:15	–	nvd
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:01983-1)	19 Jun 202500:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:1195-1)	14 Apr 202500:00	–	openvas
OSV	BELL-CVE-2023-52988	28 Mar 202505:57	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "sound/pci/hda/patch_via.c"
    ],
    "versions": [
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "437e50ef6290ac835d526d0e45f466a0aa69ba1b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "6e1f586ddec48d71016b81acf68ba9f49ca54db8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "d6870f3800dbb212ae8433183ee82f566d067c6c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "2b557fa635e7487f638c0f030c305870839eeda2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "1b9256c96220bcdba287eeeb90e7c910c77f8c46",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "f011360ad234a07cb6fbcc720fff646a93a9f0d6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "30b4503378c976cf66201a1e81820519f6bd79ac",
        "lessThan": "b9cee506da2b7920b5ea02ccd8e78a907d0ee7aa",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "sound/pci/hda/patch_via.c"
    ],
    "versions": [
      {
        "version": "3.1",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.1",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "4.14.306",
        "lessThanOrEqual": "4.14.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "4.19.273",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.4.232",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.168",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.93",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.11",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.2",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/2b557fa635e7487f638c0f030c305870839eeda2
git	www.git.kernel.org/stable/c/d6870f3800dbb212ae8433183ee82f566d067c6c
git	www.git.kernel.org/stable/c/437e50ef6290ac835d526d0e45f466a0aa69ba1b
git	www.git.kernel.org/stable/c/f011360ad234a07cb6fbcc720fff646a93a9f0d6
git	www.git.kernel.org/stable/c/6e1f586ddec48d71016b81acf68ba9f49ca54db8
git	www.git.kernel.org/stable/c/b9cee506da2b7920b5ea02ccd8e78a907d0ee7aa
git	www.git.kernel.org/stable/c/1b9256c96220bcdba287eeeb90e7c910c77f8c46

11 May 2026 19:36Current

EPSS0.00243