CVE-2023-54233 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .module_info field won't be set, then sof_ipc4_route_setup() will cause a kernel Oops trying to dereference it. Add a check for such cases.

PUBLISHED Reserved 2025-12-30 | Published 2025-12-30 | Updated 2025-12-30 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 170818974e9732506195c6302743856cc8bdfd6f

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before e3720f92e0237921da537e47a0b24e27899203f8

affected

Default status

affected

6.2.11 (semver)

unaffected

6.3 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/170818974e9732506195c6302743856cc8bdfd6f

git.kernel.org/...c/e3720f92e0237921da537e47a0b24e27899203f8

cve.org (CVE-2023-54233)

nvd.nist.gov (CVE-2023-54233)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu