Linux Kernel Vulnerability in ALSA HDA - Codec Access Issue
CVE-2023-53275

5.5MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2023-53275?

A potential null-pointer dereference vulnerability has been identified in the Linux kernel's ALSA HDA subsystem due to a data race condition. This issue arises when the variable codec->regmap is accessed without proper locking mechanism, particularly in the function snd_hdac_regmap_sync(). If codec->regmap is modified immediately after the check and set to NULL, it may lead to a dereference error in subsequent function calls, notably in regcache_sync(). To address this vulnerability, the mutex lock coverage has been extended around both the condition check and the function call, ensuring more robust protection against this race condition and enhancing the overall code consistency.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 69d5dc286d05441ca2f854ae8df11201f6f9b706 < 109f0aaa0b8838a88af9125b79579023539300a7

Linux 1a462be52f4505a2719631fb5aa7bfdbd37bfd8d < 9f9eed451176ffcac6b5ba0f6dae1a6b4a1cb0eb

Linux 1a462be52f4505a2719631fb5aa7bfdbd37bfd8d < 8703b26387e1fa4f8749db98d24c67617b873acb

References

https://git.kernel.org/stable/c/109f0aaa0b8838a88af9125b7...
https://git.kernel.org/stable/c/9f9eed451176ffcac6b5ba0f6...
https://git.kernel.org/stable/c/8703b26387e1fa4f8749db98d...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.