Linux Kernel Clock Acquisition Error Check Vulnerability in ASoC AMD ACP Machine Driver

A vulnerability exists in the Linux kernel's ASoC AMD ACP machine driver, specifically in the 'acp-card-rt5682-init' and 'acp-card-rt5682s-init' functions. These functions failed to verify the return values of the 'clk_get()' function, which could result in a kernel crash when invalid pointers are later accessed by clock core functions. The issue has been addressed by replacing 'clk_get()' with the device-managed 'devm_clk_get()' and adding 'IS_ERR()' checks immediately after each clock acquisition.

Impact

The vulnerability could lead to a kernel crash due to improper handling of clock acquisition errors, causing a denial of service by crashing the system.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. The specific commit addressing this issue is available in the Linux stable tree.