CVE-2023-52689

Summary

In the Linux kernel, the following vulnerability has been resolved:

ALSA: scarlett2: Add missing mutex lock around get meter levels

As scarlett2_meter_ctl_get() uses meter_level_map[], the data_mutex should be locked while accessing it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3473185f31df29ac572be94fdb87ad8267108bec < 74e3de7cdcc31ce75ab42350ae0946eff62a2da2affected
LinuxLinux3473185f31df29ac572be94fdb87ad8267108bec < 993f7b42fa066b055e3a19b7f76ad8157c0927a0affected
LinuxLinux6.7affected
LinuxLinux0 < 6.7unaffected
LinuxLinux6.7.2 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References