VYPR
Medium severity6.3NVD Advisory· Published Jan 15, 2025· Updated Jun 17, 2026

CVE-2024-57893

CVE-2024-57893

Description

In the Linux kernel, the following vulnerability has been resolved:

ALSA: seq: oss: Fix races at processing SysEx messages

OSS sequencer handles the SysEx messages split in 6 bytes packets, and ALSA sequencer OSS layer tries to combine those. It stores the data in the internal buffer and this access is racy as of now, which may lead to the out-of-bounds access.

As a temporary band-aid fix, introduce a mutex for serializing the process of the SysEx message packets.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

248

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.