CVE-2024-23196

2024-02-0500:00:00

ubuntu.com

race condition

null pointer dereference

denial of service

cve-2024-23196

kernel panic

sound/hda device driver

5.3 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

A race condition was found in the Linux kernel’s sound/hda device driver in
snd_hdac_regmap_sync() function. This can result in a null pointer
dereference issue, possibly leading to a kernel panic or denial of service
issue.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchlinux< 5.4.0-169.187UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-91.101UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1116.126UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1051.56UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1051.56~20.04.1UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< anyUNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1121.128UNKNOWN
ubuntu22.04noarchlinux-azure< 5.15.0-1053.61UNKNOWN
ubuntu20.04noarchlinux-azure-5.15< 5.15.0-1053.61~20.04.1UNKNOWN
ubuntu18.04noarchlinux-azure-5.4< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	linux	< 5.4.0-169.187	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-91.101	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1116.126	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1051.56	UNKNOWN
ubuntu	20.04	noarch	linux-aws-5.15	< 5.15.0-1051.56~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< any	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1121.128	UNKNOWN
ubuntu	22.04	noarch	linux-azure	< 5.15.0-1053.61	UNKNOWN
ubuntu	20.04	noarch	linux-azure-5.15	< 5.15.0-1053.61~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-azure-5.4	< any	UNKNOWN