Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: Assign dummy when codec not specified for a DAI link MediaTek sound card drivers are checking whether a DAI link is present and used on a board to assign the correct parameters and this is done by checking the codec DAI names at probe time. If no real codec is present, assign the dummy codec to the DAI link to avoid NULL pointer during string comparison.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.3, < 6.6.33 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/0c052b1c11d8119f3048b1f7b3c39a90500cacf9Patch
- https://git.kernel.org/stable/c/5f39231888c63f0a7708abc86b51b847476379d8Patch
- https://git.kernel.org/stable/c/87b8dca6e06f9b1681bc52bf7bfa85c663a11158Patch
- https://git.kernel.org/stable/c/cbbcabc7f0979f6542372cf88d7a9da7143a4226Patch
- https://git.kernel.org/stable/c/0c052b1c11d8119f3048b1f7b3c39a90500cacf9Patch
- https://git.kernel.org/stable/c/5f39231888c63f0a7708abc86b51b847476379d8Patch
- https://git.kernel.org/stable/c/87b8dca6e06f9b1681bc52bf7bfa85c663a11158Patch
- https://git.kernel.org/stable/c/cbbcabc7f0979f6542372cf88d7a9da7143a4226Patch
FAQ
What is CVE-2024-38551?
CVE-2024-38551 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: Assign dummy when codec not specified for a DAI link MediaTek sound card drivers are checking whether a DAI link i...
How severe is CVE-2024-38551?
CVE-2024-38551 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-38551?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.