First published: Fri Dec 27 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Add sanity NULL check for the default mmap fault handler A driver might allow the mmap access before initializing its runtime->dma_area properly. Add a proper NULL check before passing to virt_to_page() for avoiding a panic.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Affected Software | Affected Version | How to fix |
---|---|---|
Linux Kernel | <5.15.174 | |
Linux Kernel | >=5.16<6.1.120 | |
Linux Kernel | >=6.2<6.6.64 | |
Linux Kernel | >=6.7<6.11.11 | |
Linux Kernel | >=6.12<6.12.2 | |
debian/linux | <=5.10.223-1<=5.10.234-1 | 6.1.129-1 6.1.128-1 6.12.20-1 6.12.21-1 |
debian/linux-6.1 | 6.1.129-1~deb11u1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2024-53180 has been classified as moderate.
To fix CVE-2024-53180, update the Linux kernel to a version that is greater than 5.15.174 or between the versions of 5.16 and 6.1.120, or between 6.2 and 6.6.64, or between 6.7 and 6.11.11, or at least 6.12.2.
CVE-2024-53180 affects multiple versions, specifically kernels from 5.15.0 to 5.15.174, 5.16.0 to 6.1.120, 6.2.0 to 6.6.64, and 6.7.0 to 6.11.11, as well as 6.12.0 to 6.12.2.
CVE-2024-53180 is related to a memory management issue in the ALSA pcm subsystem of the Linux kernel.
There is no specific workaround for CVE-2024-53180; updating the kernel is the recommended approach.