CVE-2023-52806

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published May 21, 2024

Updated: May 24, 2024

CWE ID 476

Summary

CVE-2023-52806 is a vulnerability affecting the Linux kernel's ALSA (Advanced Linux Sound Architecture) subsystem. The issue arises when assigning streams in AudioDSP drivers, where a null-pointer dereference can occur if a user attempts to assign a COUPLED stream while a HOST or LINK stream is already assigned. This vulnerability can lead to kernel crashes or potentially more serious consequences if exploited. The Linux kernel team has resolved this issue to prevent such scenarios and protect affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wC8uKD
https://www.cve.org/CVERecord?id=CVE-2023-52806
https://nvd.nist.gov/vuln/detail/CVE-2023-52806

Back to Vulnerability Database

CVE-2023-52806

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations