CVE-2023-52674
ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.5EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
17 may 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved:
ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()
Ensure the value passed to scarlett2_mixer_ctl_put() is between 0 and
SCARLETT2_MIXER_MAX_VALUE so we don't attempt to access outside
scarlett2_mixer_values[].
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Linux · LinuxReferencias
https://git.kernel.org/stable/c/03035872e17897ba89866940bbc9cefca601e572https://git.kernel.org/stable/c/04f8f053252b86c7583895c962d66747ecdc61b7https://git.kernel.org/stable/c/ad945ea8d47dd4454c271510bea24850119847c2https://git.kernel.org/stable/c/d8d8897d65061cbe36bf2909057338303a904810https://git.kernel.org/stable/c/e517645ead5ea22c69d2a44694baa23fe1ce7c2b