Linux Kernel Intel ASoC SoundWire Card Registration Error Handling Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ASoC Intel Sound Open Firmware (SOF) component has been addressed. The issue arose during the registration of SoundWire cards, where errors, often due to deferred probes, were not properly managed. This oversight caused the device properties associated with headset codecs to remain, leading to kernel oopses during driver bind and unbind tests. Although the device properties are cleared when the card is removed, this cleanup can be centralized into a helper function to be called in case of registration errors.

Impact

The vulnerability could lead to kernel oopses, causing crashes during driver bind and unbind tests.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Intel ASoC SoundWire Card Registration Error Handling Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating