2 matches found
UBUNTU-CVE-2024-38600
In the Linux kernel, the following vulnerability has been resolved: ALSA: Fix deadlocks with kctl removals at disconnection In sndcarddisconnect, we set card-shutdown flag at the beginning, call callbacks and do sync for card-powerrefsleep waiters at the end. The callback may delete a kctl elemen...
Kernel: ALSA: control: do not access controls outside of protected regions
A use-after-free flaw was found in the way the Linux kernel's Advanced Linux Sound Architecture ALSA implementation handled user controls. A local, privileged user could use this flaw to crash the system...