CVE-2023-52689

2024-05-1801:40:51

redhat.com

access.redhat.com

linux kernel

alsa

scarlett2

vulnerability

mutex lock

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Add missing mutex lock around get meter levels As scarlett2_meter_ctl_get() uses meter_level_map[], the data_mutex should be locked while accessing it.

References

bugzilla.redhat.com/show_bug.cgi?id=2281305

lore.kernel.org/linux-cve-announce/2024051753-CVE-2023-52689-f657@gregkh/T

nvd.nist.gov/vuln/detail/CVE-2023-52689

www.cve.org/CVERecord?id=CVE-2023-52689