Linux Kernel Array Out-of-Bounds Access Vulnerability in ASoC Codecs

Vulnerability

A vulnerability in the Linux kernel's ASoC codecs component allows for array out-of-bounds access when enums are accessed using integers. This issue arises on platforms like AArch64, where the size of long integers is 8 bytes, compared to the 4-byte size of enums. The vulnerability has been addressed in recent kernel updates.

Impact

Exploitation of this vulnerability could lead to memory corruption or undefined behavior, potentially allowing for arbitrary code execution or escalation of privileges.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Array Out-of-Bounds Access Vulnerability in ASoC Codecs

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating