CVE-2023-53866Missing Synchronization in Linux

CWE-820Missing Synchronization7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 90.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcm_mutex If panic_on_warn is set and compress stream(DPCM) is started, then kernel panic occurred because card->pcm_mutex isn't held appropriately. In the following functions, warning were issued at this line "snd_soc_dpcm_mutex_assert_held". static int dpcm_be_connect(struct snd_soc_pcm_runtime *fe, struct snd_soc_pcm_runtime *be, int stream) { ... snd_soc_dpcm_mutex_assert_held(fe); .

Affected Packages4 packages

Linuxlinux/linux_kernel5.17.06.1.16+1
Debianlinux/linux_kernel< 6.1.20-1+2
CVEListV5linux/linuxb7898396f4bbe160f546d0c5e9fa17cca9a7d1539a9942cbdb7c3f41452f7bc4a9ff9f0b45eb3651+3
debiandebian/linux< linux 6.1.20-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2023-53866: In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcm_mutex If panic_on_warn is set and compr2025-12-09
GHSA
GHSA-2r2h-c3j9-j3mg: In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcm_mutex If panic_on_warn is set and com2025-12-09
OSV
ASoC: soc-compress: Reposition and add pcm_mutex2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: ASoC: soc-compress: Reposition and add pcm_mutex2025-12-09
Debian
CVE-2023-53866: linux - In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-c...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-53866 Impact, Exploitability, and Mitigation Steps | Wiz