362 matches found
EUVD-2026-4622
In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "sndsoccomponent" in "adcx140priv" was only used once but never set. It was only used for reaching "dev" which is already present in "adcx140priv"...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38078)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38078 advisory. - In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix race of buffer access at...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003707)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003707 advisory. An issue was discovered in the Linux kernel before 5.0.10. There is a use-after-free in the sound subsystem because card disconnection causes certain data structures...
CVE-2025-71081
In the Linux kernel, the following vulnerability has been resolved: ASoC: stm32: sai: fix OF node leak on probe The reference taken to the sync provider OF node when probing the platform device is currently only dropped if the setsync callback fails during DAI probe. Make sure to drop the referen...
CVE-2025-71081
In the Linux kernel, the following vulnerability has been resolved: ASoC: stm32: sai: fix OF node leak on probe The reference taken to the sync provider OF node when probing the platform device is currently only dropped if the setsync callback fails during DAI probe. Make sure to drop the referen...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: ASoC: Intel: avs: Disabling period-elapsed work when closing PCM The avsdaifeshutdown function handles the shutdown procedure for the HOST HAudio stream. Period-elapsed work processes its IRQs. Since the former frees the DAI’s...
PT-2026-2602
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the ASoC Audio System on Chip STM32 SAI Serial Audio Interface driver. Specifically, the vulnerability involves a potential OF Open Firmware...
Siemens Ruggedcom ROX Out-of-bounds Write (CVE-2022-48951)
In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in sndsocputvolswsx The bounds checks in sndsocputvolswsx are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stere...
CVE-2025-68753 ALSA: firewire-motu: add bounds check in put_user loop for DSP events
In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...
PT-2026-4668
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to a null pointer dereference within the ASoC ALSA on System-on-Chip subsystem, specifically in the tlv320adcx140 driver. The snd soc component...
PT-2026-8198
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the AMD Asoc Advanced Linux Sound Architecture component, specifically within the acp3x PDM Pulse Density Modulation DMA Direct Memory Access operations. This iss...
SUSE CVE-2022-50866
In the Linux kernel, the following vulnerability has been resolved: ASoC: pxa: fix null-pointer dereference in filter kasprintf would return NULL pointer when kmalloc fail to allocate. Need to check the return pointer before calling strcmp...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992759)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992759 advisory. In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173rt5650devprobe ofparsephandle returns a...
CVE-2023-54245
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds When we run syzkaller we get below Out of Bound. "KASAN: slab-out-of-bounds Read in regcacheflatread" Below is the backtrace of the issue: dumpbacktrace+0x0/0x4c8...
CVE-2023-54233
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .moduleinfo field won't be set, then sofipc4routesetup will cause a kernel Oops trying to dereference it. Add a...
UBUNTU-CVE-2023-54245
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds When we run syzkaller we get below Out of Bound. "KASAN: slab-out-of-bounds Read in regcacheflatread" Below is the backtrace of the issue: dumpbacktrace+0x0/0x4c8...
UBUNTU-CVE-2022-50866
In the Linux kernel, the following vulnerability has been resolved: ASoC: pxa: fix null-pointer dereference in filter kasprintf would return NULL pointer when kmalloc fail to allocate. Need to check the return pointer before calling strcmp...
UBUNTU-CVE-2023-54233
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .moduleinfo field won't be set, then sofipc4routesetup will cause a kernel Oops trying to dereference it. Add a...
CVE-2023-54245
CVE-2023-54245 concerns a Linux kernel vulnerability in ASoC: codecs: tx-macro where a KASAN slab-out-of-bounds read occurred (regcache_flat_read path). The issue manifested under syzkaller as a read from regcache_flat_read traced through regmap_READ/UPDATE_BITS and snd_soc_component_write_field,...
CVE-2023-54245 ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds When we run syzkaller we get below Out of Bound. "KASAN: slab-out-of-bounds Read in regcacheflatread" Below is the backtrace of the issue: dumpbacktrace+0x0/0x4c8...