CVE-2023-53400

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fix Oops by 9.1 surround channel names getlineoutpfx may trigger an Oops by overflowing the static array with more than 8 channels. This was reported for MacBookPro 12,1 with Cirrus codec. As a workaround, extend for t...

CVE-2025-38056 ASoC: SOF: Intel: hda: Fix UAF when reloading module

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Fix UAF when reloading module hdagenericmachineselect appends -idisp to the tplg filename by allocating a new string with devmkasprintf, then stores the string right back into the global variable...

CVE-2024-51564

The CVE-2024-51564 issue is in the bhyve hypervisor’s device models, specifically a guest-triggered infinite loop in the hda audio driver. The FreeBSD VuXML advisory and related reports flag this as part of a set of bhyve vulnerabilities (CVE-2024-51562..51566) that can allow a malicious guest to...

FreeBSD -- Multiple issues in the bhyve hypervisor

Problem Description: Several vulnerabilities were found in the bhyve hypervisor's device models. The NVMe driver function nvmeopcgetlogpage is vulnerable to a buffer over- read from a guest-controlled value. CVE-2024-51562 The virtiovqrecordon function is subject to a time-of-check to time-of-use...