VYPR
Medium severity5.5NVD Advisory· Published Mar 25, 2026· Updated May 28, 2026

CVE-2026-23301

CVE-2026-23301

Description

In the Linux kernel, the following vulnerability has been resolved:

ASoC: SDCA: Add allocation failure check for Entity name

Currently find_sdca_entity_iot() can allocate a string for the Entity name but it doesn't check if that allocation succeeded. Add the missing NULL check after the allocation.

Affected products

6
  • Linux/Kernel4 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=6.19,<6.19.7
    • cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
    • (no CPE)range: 6.19
  • osv-coords
    Range: >= 6.19.0, < 6.19.7

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.