CVE-2023-54233

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .module_info field won't be set, then sof_ipc4_route_setup() will cause a kernel Oops trying to dereference it. Add a check for such cases.

References

https://git.kernel.org/stable/c/170818974e9732506195c6302743856cc8bdfd6f
https://git.kernel.org/stable/c/e3720f92e0237921da537e47a0b24e27899203f8

FAQ

What is CVE-2023-54233?

CVE-2023-54233 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .module_info ...

How severe is CVE-2023-54233?

CVSS scoring is not yet available for CVE-2023-54233. Check NVD for updates.

Is there a patch for CVE-2023-54233?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.