CVE-2026-23301 — Unchecked Return Value in Linux

CWE-252 — Unchecked Return Value7 documents6 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 93.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Add allocation failure check for Entity name Currently find_sdca_entity_iot() can allocate a string for the Entity name but it doesn't check if that allocation succeeded. Add the missing NULL check after the allocation.

Affected Packages4 packages

▶Linuxlinux/linux_kernel6.19.0 — 6.19.7

▶Debianlinux/linux_kernel< 6.19.8-1

▶CVEListV5linux/linux48fa77af2f4a55ab961520f2a0e50560dc0baca8 — bdcc10a86055beb7109a786d94abf5626f375bbd+2

▶debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

OSV

ASoC: SDCA: Add allocation failure check for Entity name↗2026-03-25

▶

OSV

CVE-2026-23301: In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Add allocation failure check for Entity name Currently find_sdca_entit↗2026-03-25

▶

GHSA

GHSA-hjww-hmp9-xppj: In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Add allocation failure check for Entity name Currently find_sdca_ent↗2026-03-25

▶

📋Vendor Advisories

Red Hat

kernel: ASoC: SDCA: Add allocation failure check for Entity name↗2026-03-25

▶

Debian

CVE-2026-23301: linux - In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA:...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-23301 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶