CVE-2023-53788

NONE EPSS 7.4%
Published Dec 9, 20256mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Dec 9, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set() tuning_ctl_set() might have buffer overrun at (X) if it didn't break from loop by matching (A). static int tuning_ctl_set(...) { for (i = 0; i < TUNING_CTLS_COUNT; i++) (A) if (nid == ca0132_tuning_ctls[i].nid) break; snd_hda_power_up(...); (X) dspio_set_param(..., ca0132_tuning_ctls[i].mid, ...); snd_hda_power_down(...); ^ return 1; } We will get below error by cppcheck sound/pci/hda/patch_ca0132.c:4229:2: note: After for loop, i has value 12 for (i = 0; i < TUNING_CTLS_COUNT; i++) ^ sound/pci/hda/patch_ca0132.c:4234:43: note: Array index out of bounds dspio_set_param(codec, ca0132_tuning_ctls[i].mid, 0x20, ^ This patch cares non match case.

Threat Intelligence

EPSS Exploit Probability
7.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 8

  • git.kernel.org https://git.kernel.org/stable/c/32854bc91ae7debcdefdc7ae881ed83385a04792
  • git.kernel.org https://git.kernel.org/stable/c/3590498117a11aa1f92a97e8a04d95320e347ebd
  • git.kernel.org https://git.kernel.org/stable/c/734a3deb6614e3597e7e9ef7fb6006c593c5ee18
  • git.kernel.org https://git.kernel.org/stable/c/7f12f99b8017ad5ed5aff4b0aefe3bb7bbdf8a99
  • git.kernel.org https://git.kernel.org/stable/c/98e5eb110095ec77cb6d775051d181edbf9cd3cf
  • git.kernel.org https://git.kernel.org/stable/c/baef27176ea5fdc7ad0947e2dc7733855e35db71
  • git.kernel.org https://git.kernel.org/stable/c/d23f65f08247068576a01e28b297e995b7dc3965
  • git.kernel.org https://git.kernel.org/stable/c/ff5e8b49348f6a550c136b74efaf8b3c1d3ceaea

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.