Linux Kernel Pointer Check Vulnerability in ASoC Simple Card Utilities

Vulnerability

A vulnerability in the Linux kernel's ASoC simple-card-utils component has been addressed. The issue was related to improper pointer validation before writing to them, which could lead to undefined behavior. Specifically, the vulnerability caused a UBSAN warning about an invalid load, as an uninitialized variable was read without being properly set. The problem arose because the playback-only property was missing, leaving the corresponding variable uninitialized.

Impact

The vulnerability could lead to undefined behavior in the kernel, potentially allowing for memory corruption or other unintended consequences.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Pointer Check Vulnerability in ASoC Simple Card Utilities

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating