CVE-2023-52680

Summary

In the Linux kernel, the following vulnerability has been resolved:

ALSA: scarlett2: Add missing error checks to *_ctl_get()

The ctl_get() functions which call scarlett2_update() were not checking the return value. Fix to check the return value and pass to the caller.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9e4d5c1be21f0c00e747e92186784f3298309b3e < 3a09488f4f67f7ade59b8ac62a6c7fb29439cf51affected
LinuxLinux9e4d5c1be21f0c00e747e92186784f3298309b3e < cda7762bea857e6951315a2f7d0632ea1850ed43affected
LinuxLinux9e4d5c1be21f0c00e747e92186784f3298309b3e < 821fbaeaaae23d483d3df799fe91ec8045973ec3affected
LinuxLinux9e4d5c1be21f0c00e747e92186784f3298309b3e < 773e38f73461ef2134a0d33a08f1668edde9b7c3affected
LinuxLinux9e4d5c1be21f0c00e747e92186784f3298309b3e < 50603a67daef161c78c814580d57f7f0be57167eaffected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux5.15.148 <= 5.15.*unaffected
LinuxLinux6.1.75 <= 6.1.*unaffected
LinuxLinux6.6.14 <= 6.6.*unaffected
LinuxLinux6.7.2 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References