Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path() snd_hda_get_connections() can return a negative error code. It may lead to accessing 'conn' array at a negative index. Found by Linux Verification Center (linuxtesting.org) with SVACE.

INFO

Published Date :

2025-03-27T16:43:25.056Z

Last Modified :

2025-10-01T17:20:48.141Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52988 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52988.

URL Resource
https://git.kernel.org/stable/c/1b9256c96220bcdba287eeeb90e7c910c77f8c46 cve-icon cve-icon
https://git.kernel.org/stable/c/2b557fa635e7487f638c0f030c305870839eeda2 cve-icon cve-icon
https://git.kernel.org/stable/c/437e50ef6290ac835d526d0e45f466a0aa69ba1b cve-icon cve-icon
https://git.kernel.org/stable/c/6e1f586ddec48d71016b81acf68ba9f49ca54db8 cve-icon cve-icon
https://git.kernel.org/stable/c/b9cee506da2b7920b5ea02ccd8e78a907d0ee7aa cve-icon cve-icon
https://git.kernel.org/stable/c/d6870f3800dbb212ae8433183ee82f566d067c6c cve-icon cve-icon
https://git.kernel.org/stable/c/f011360ad234a07cb6fbcc720fff646a93a9f0d6 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025032708-CVE-2023-52988-5520@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52988 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52988 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact