Lucene search

K
ubuntucveUbuntu.comUB:CVE-2023-52663
HistoryMay 17, 2024 - 12:00 a.m.

CVE-2023-52663

2024-05-1700:00:00
ubuntu.com
ubuntu.com
1
linux kernel
asoc
sof
amd
memory leak
vulnerability fix
driver
allocation
memory

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

In the Linux kernel, the following vulnerability has been resolved: ASoC:
SOF: amd: Fix memory leak in amd_sof_acp_probe() Driver uses kasprintf() to
initialize fw_{code,data}_bin members of struct acp_dev_data, but kfree()
is never called to deallocate the memory, which results in a memory leak.
Fix the issue by switching to devm_kasprintf(). Additionally, ensure the
allocation was successful by checking the pointer validity.

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%