CVE-2023-52689

Published: May 17, 2024Modified: Sep 25, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Add missing mutex lock around get meter levels As scarlett2_meter_ctl_get() uses meter_level_map[], the data_mutex should be locked while accessing it.

Affected (1)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 6.7 to 6.7.2

Related CWEs

CWE-667

Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

References (4)

https://git.kernel.org/stable/c/74e3de7cdcc31ce75ab42350ae0946eff62a2da2

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/993f7b42fa066b055e3a19b7f76ad8157c0927a0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/74e3de7cdcc31ce75ab42350ae0946eff62a2da2

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/993f7b42fa066b055e3a19b7f76ad8157c0927a0

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.