VDB

DEBIAN-CVE-2023-54233

DEBIAN-CVE-2023-54233 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .module_info field won't be set, then sof_ipc4_route_setup() will cause a kernel Oops trying to dereference it. Add a check for such cases.

Affected Products

VendorProductVersions
Debian:12linux6.12.33-1~bpo12+1, 6.12.41-1, 6.12.38-1
Debian:13linux0, 0, 0
Debian:14linux0, 0, 0

Timeline

  • Dec 30, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›