Description

In the Linux kernel, the following vulnerability has been resolved:

ALSA: scarlett2: Add missing error checks to *_ctl_get()

The *_ctl_get() functions which call scarlett2_update_*() were not
checking the return value. Fix to check the return value and pass to
the caller.

Classification

CVE ID: CVE-2023-52680

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.81% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/3a09488f4f67f7ade59b8ac62a6c7fb29439cf51
https://git.kernel.org/stable/c/cda7762bea857e6951315a2f7d0632ea1850ed43
https://git.kernel.org/stable/c/821fbaeaaae23d483d3df799fe91ec8045973ec3
https://git.kernel.org/stable/c/773e38f73461ef2134a0d33a08f1668edde9b7c3
https://git.kernel.org/stable/c/50603a67daef161c78c814580d57f7f0be57167e

Timeline