GHSA-h3h4-ggmf-jjqx

Опубликовано: 24 дек. 2025

Источник: github

Github: Не прошло ревью

Описание

In the Linux kernel, the following vulnerability has been resolved:

ALSA: firewire-digi00x: prevent potential use after free

This code was supposed to return an error code if init_stream() failed, but it instead freed dg00x->rx_stream and returned success. This potentially leads to a use after free.

In the Linux kernel, the following vulnerability has been resolved:

ALSA: firewire-digi00x: prevent potential use after free

This code was supposed to return an error code if init_stream() failed, but it instead freed dg00x->rx_stream and returned success. This potentially leads to a use after free.

Ссылки

EPSS

Процентиль: 10%

0.00035

Низкий

CVE ID

CVE-2023-54084

Связанные уязвимости

CVE-2023-54084

ubuntu

около 2 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-digi00x: prevent potential use after free This code was supposed to return an error code if init_stream() failed, but it instead freed dg00x->rx_stream and returned success. This potentially leads to a use after free.

CVE-2023-54084

nvd

около 2 месяцев назад

CVE-2023-54084

debian

около 2 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: A ...

BDU:2026-01238

CVSS3: 5.5

fstec

больше 2 лет назад

Уязвимость функции snd_dg00x_stream_init_duplex() модуля sound/firewire/digi00x/digi00x-stream.c звуковой подсистемы ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

SUSE-SU-2026:0317-1

suse-cvrf

12 дней назад

Security update for the Linux Kernel

EPSS

Процентиль: 10%

0.00035

Низкий

CVE ID

CVE-2023-54084