CVE-2023-54233

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to the ASoC (Advanced Linux Sound Architecture) and SOF (Sound Open Firmware) subsystems. Specifically, the issue involves a potential NULL dereference when handling IPC4 topologies containing unsupported widgets. If a widget within an IPC4 topology lacks a properly set .module info field, the sof ipc4 route setup() function may attempt to dereference a NULL pointer, leading to a kernel Oops. This occurs when the system encounters an unsupported widget within the IPC4 topology.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.