CVE-2023-53607

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.21-1-lts #1

Description A flaw exists in the Linux kernel's ALSA subsystem, specifically within the ymfpci driver. A BUG ON condition in the snd ymfpci create function did not properly account for the aligned size of the snd dma buffer.bytes field, leading to a kernel warning and potential issues. This issue occurs during the probing of the device.

Recommendations Update to Linux kernel version 6.1.21-1-lts #1 or a later version to address this issue.

Exploit

Fix

Buffer Overflow

Assertion Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120CWE-617

Related Identifiers

ALSA-2025_16880

BDU:2026-04335

CESA-2021_4356

CESA-2023_7077

CVE-2023-53607

RHSA-2021:4356

RHSA-2021_4356

RHSA-2023:6583

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_7077

SUSE-SU-2025:4111-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4320-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

CVE-2023-53607

Weakness Enumeration

Related Identifiers

Affected Products

References · 456