CVE-2023-53648 PUBLISHED

ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer

Assigner: Linux
Reserved: 07.10.2025 Published: 07.10.2025 Updated: 07.10.2025

In the Linux kernel, the following vulnerability has been resolved:

ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer

smatch error: sound/pci/ac97/ac97_codec.c:2354 snd_ac97_mixer() error: we previously assumed 'rac97' could be null (see line 2072)

remove redundant assignment, return error if rac97 is NULL.

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to 809af7bb4219bdeef0dbb8b2ed700d6516d13fe9 (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to e4cccff1e7ab6ea30995b6fbbb007d02647e025c (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to 5f13d67027fa782096e6aee0db5dce61c4aeb613 (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to f923a582217b198b557756809ffe42ac0fad6adb (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to 300e26e3e64880de5013eac8831cf44387ef752c (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to d28b83252e150155b8b8c65b612c555e93c8b45f (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to 09baf460dfba79ee6a0c72e68ccdbbba84d894df (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to 228da1fa124470606ac19783e551f9d51a1e01b0 (excl.) affected from da3cec35dd3c31d8706db4bf379372ce70d92118 to 79597c8bf64ca99eab385115743131d260339da5 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 2.6.28 is affected unaffected from 0 to 2.6.28 (excl.) unaffected from 4.14.322 to 4.14.* (incl.) unaffected from 4.19.291 to 4.19.* (incl.) unaffected from 5.4.251 to 5.4.* (incl.) unaffected from 5.10.188 to 5.10.* (incl.) unaffected from 5.15.121 to 5.15.* (incl.) unaffected from 6.1.39 to 6.1.* (incl.) unaffected from 6.3.13 to 6.3.* (incl.) unaffected from 6.4.4 to 6.4.* (incl.) unaffected from 6.5 to * (incl.)