CVE-2026-23301 PUBLISHED

ASoC: SDCA: Add allocation failure check for Entity name

Assigner: Linux
Reserved: 13.01.2026 Published: 25.03.2026 Updated: 25.03.2026

In the Linux kernel, the following vulnerability has been resolved:

ASoC: SDCA: Add allocation failure check for Entity name

Currently find_sdca_entity_iot() can allocate a string for the Entity name but it doesn't check if that allocation succeeded. Add the missing NULL check after the allocation.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 48fa77af2f4a55ab961520f2a0e50560dc0baca8 to bdcc10a86055beb7109a786d94abf5626f375bbd (excl.) affected from 48fa77af2f4a55ab961520f2a0e50560dc0baca8 to 27990181031fdcdbe0f7c46011f6404e5d116386 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.19 is affected unaffected from 0 to 6.19 (excl.) unaffected from 6.19.7 to 6.19.* (incl.) unaffected from 7.0-rc3 to * (incl.)

References

https://git.kernel.org/stable/c/bdcc10a86055beb7109a786d94abf5626f375bbd
https://git.kernel.org/stable/c/27990181031fdcdbe0f7c46011f6404e5d116386