CVE-2023-52692
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
17/05/2024
Last modified:
25/09/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
ALSA: scarlett2: Add missing error check to scarlett2_usb_set_config()<br />
<br />
scarlett2_usb_set_config() calls scarlett2_usb_get() but was not<br />
checking the result. Return the error if it fails rather than<br />
continuing with an invalid value.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.14 (including) | 5.15.148 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.1.75 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.14 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.7.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/145c5aa51486171025ab47f35cff34bff8d0cea3
- https://git.kernel.org/stable/c/51d5697e1c0380d482c3eab002bfc8d0be177e99
- https://git.kernel.org/stable/c/996fde492ad9b9563ee483b363af40d7696a8467
- https://git.kernel.org/stable/c/be96acd3eaa790d10a5b33e65267f52d02f6ad88
- https://git.kernel.org/stable/c/ca459dfa7d4ed9098fcf13e410963be6ae9b6bf3
- https://git.kernel.org/stable/c/145c5aa51486171025ab47f35cff34bff8d0cea3
- https://git.kernel.org/stable/c/51d5697e1c0380d482c3eab002bfc8d0be177e99
- https://git.kernel.org/stable/c/996fde492ad9b9563ee483b363af40d7696a8467
- https://git.kernel.org/stable/c/be96acd3eaa790d10a5b33e65267f52d02f6ad88
- https://git.kernel.org/stable/c/ca459dfa7d4ed9098fcf13e410963be6ae9b6bf3