CVE-2025-68281

Summary

In the Linux kernel, the following vulnerability has been resolved:

ASoC: SDCA: bug fix while parsing mipi-sdca-control-cn-list

"struct sdca_control" declares "values" field as integer array. But the memory allocated to it is of char array. This causes crash for sdca_parse_function API. This patch addresses the issue by allocating correct data size.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux50a479527ef01f9b36dde1803a7e81741a222509 < fcd5786b506c51cbabc2560c68e040d8dba22a0daffected
LinuxLinux50a479527ef01f9b36dde1803a7e81741a222509 < eb2d6774cc0d9d6ab8f924825695a85c14b2e0c2affected
LinuxLinux6.17affected
LinuxLinux0 < 6.17unaffected
LinuxLinux6.17.12 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References