Linux Kernel Vulnerability in WCD938X Codec Handling
CVE-2023-53666

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 7 October 2025

What is CVE-2023-53666?

In the Linux kernel, a vulnerability exists within the ASoC codecs, specifically related to the WCD938X codec. The vulnerability arises from the failure to properly handle the initialization of the multi-button headset connector (MBHC). This oversight can lead to dereferencing an error pointer during jack configuration, potentially causing an inability to manage kernel paging requests. Effective error handling measures should be implemented to prevent system instability and ensure secure operation of audio codec functionality.

Affected Version(s)

Linux bcee7ed09b8e70b65d5c04f5d1acd2cf4213c2f3 < 5a34d252052b5da743ef82591c860fc947384d4e

Linux bcee7ed09b8e70b65d5c04f5d1acd2cf4213c2f3

Linux bcee7ed09b8e70b65d5c04f5d1acd2cf4213c2f3 < 31ee704c84c4bf4df8521ef1478c161f710d0f94

References

https://git.kernel.org/stable/c/5a34d252052b5da743ef82591...

https://git.kernel.org/stable/c/bb241ae928c694e365c30c888...

https://git.kernel.org/stable/c/31ee704c84c4bf4df8521ef14...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 7, 2025
Vulnerability Reserved
Oct 7, 2025

JSON