Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Dismissed
(max. allowed matches exceeded)
created 2 weeks, 6 days ago Activity log
  • Created & dismissed (max. allowed matches exceeded) suggestion
ALSA: hda/conexant: Fix missing error check for jack detection

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/conexant: Fix missing error check for jack detection In cx_probe(), the return value of snd_hda_jack_detect_enable_callback() is ignored. This function returns a pointer, and if it fails (e.g., due to memory allocation failure), it returns an error pointer which must be checked using IS_ERR(). If the registration fails, the driver continues to probe, but the jack detection callback will not be registered. This can lead to a kernel crash later when the driver attempts to handle jack events or accesses the uninitialized structure. Check the return value using IS_ERR() and propagate the error via PTR_ERR() to the probe caller.

Affected products

Linux
  • <a2a33e87a2ffce3046c574d24eec4390c27c9365
  • =<6.6.*
  • =<*
  • =<7.0.*
  • <dd110cc00cf854a8ecd8d003127a4178c28574ea
  • <d68f753d89f4ef6e410d7e8b7e8ab2fdde921b80
  • <6.8
  • =<6.18.*
  • <b0e2333a231107adedd38c6fcfe1adc6162716fc
  • ==6.8
  • =<5.15.*
  • <49c2c5924552e1d2f8b635dee663abebbb7cf63b
  • =<6.12.*
  • <5.15.209
  • <6.1.175
  • <6.6.141
  • =<6.1.*
  • <1da5c73f3793b224696617a2a21def7500ba18d6
  • ==4a28302b2c681e3cf85e3b41231fff363c4c6a0e
  • <6.8
  • <f837c7b85143a7c54140ff41ad5c076b73cd9933