CVE-2023-54245

EPSS 0.03%
Veröffentlicht 30.12.2025 12:15:44
Zuletzt bearbeitet 31.12.2025 20:42:43
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds

When we run syzkaller we get below Out of Bound.
    "KASAN: slab-out-of-bounds Read in regcache_flat_read"

    Below is the backtrace of the issue:

    dump_backtrace+0x0/0x4c8
    show_stack+0x34/0x44
    dump_stack_lvl+0xd8/0x118
    print_address_description+0x30/0x2d8
    kasan_report+0x158/0x198
    __asan_report_load4_noabort+0x44/0x50
    regcache_flat_read+0x10c/0x110
    regcache_read+0xf4/0x180
    _regmap_read+0xc4/0x278
    _regmap_update_bits+0x130/0x290
    regmap_update_bits_base+0xc0/0x15c
    snd_soc_component_update_bits+0xa8/0x22c
    snd_soc_component_write_field+0x68/0xd4
    tx_macro_digital_mute+0xec/0x140

    Actually There is no need to have decimator with 32 bits.
    By limiting the variable with short type u8 issue is resolved.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < da35a4e6eee5d73886312e85322a6e97df901987

Version d207bdea0ca9efde321ff142e9b9f2ef73f9cdf5

Status affected

Version < 57f9a9a232bde7abfe49c3072b29a255da9ba891

Version d207bdea0ca9efde321ff142e9b9f2ef73f9cdf5

Status affected

Version < b0cd740a31412340fead50e69e4fe9bc3781c754

Version d207bdea0ca9efde321ff142e9b9f2ef73f9cdf5

Status affected

Version < e5e7e398f6bb7918dab0612eb6991f7bae95520d

Version d207bdea0ca9efde321ff142e9b9f2ef73f9cdf5

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.12

Status affected

Version < 5.12

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.106

Status unaffected

Version <= 6.1.*

Version 6.1.23

Status unaffected

Version <= 6.2.*

Version 6.2.10

Status unaffected

Version <= *

Version 6.3

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.063

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/da35a4e6eee5d73886312e85322a6e97df901987

https://git.kernel.org/stable/c/57f9a9a232bde7abfe49c3072b29a255da9ba891

https://git.kernel.org/stable/c/b0cd740a31412340fead50e69e4fe9bc3781c754

https://git.kernel.org/stable/c/e5e7e398f6bb7918dab0612eb6991f7bae95520d

https://nvd.nist.gov/vuln/detail/CVE-2023-54245

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54245

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54245

EUVD