Linux Kernel ALSA ymfpci Vulnerability in Sound Driver
CVE-2023-53607

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 October 2025

What is CVE-2023-53607?

A flaw in the ALSA ymfpci driver within the Linux kernel can trigger unexpected behavior due to an unhandled scenario in the probe function for the ymfpci driver. The snd_dma_buffer.bytes field was not properly aligned, leading to potential issues when creating sound cards. This misalignment resulted in warnings and could affect the functionality of sound devices powered by the ymfpci driver. Developers and system administrators should ensure they are using the updated versions of the Linux kernel to mitigate this risk.

Affected Version(s)

Linux 4faf4bbc2d600a921052ff45b1b5914d583d9046 < 96e34c88000febc83e41aa7db0b0a41676314818

Linux 5c1733e33c888a3cb7f576564d8ad543d5ad4a9e < 81d2a7e93c8322ca6b858f6736d7fc3d034e6c23

Linux 5c1733e33c888a3cb7f576564d8ad543d5ad4a9e < 32b9bd7cfc2e2d92d595386add4e111b232b351f

References

https://git.kernel.org/stable/c/96e34c88000febc83e41aa7db...

https://git.kernel.org/stable/c/81d2a7e93c8322ca6b858f673...

https://git.kernel.org/stable/c/32b9bd7cfc2e2d92d595386ad...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2025
Vulnerability Reserved
Oct 4, 2025

JSON