2420310 – (CVE-2023-53842) CVE-2023-53842 kernel: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove

Bug 2420310 (CVE-2023-53842) - CVE-2023-53842 kernel: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove

Summary: CVE-2023-53842 kernel: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on compo...

Keywords:
Status:	NEW
Alias:	CVE-2023-53842
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-12-09 02:01 UTC by OSIDB Bzimport
Modified:	2025-12-15 23:27 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-12-09 02:01:57 UTC

In the Linux kernel, the following vulnerability has been resolved:

ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove

The MBHC resources must be released on component probe failure and
removal so can not be tied to the lifetime of the component device.

This is specifically needed to allow probe deferrals of the sound card
which otherwise fails when reprobing the codec component:

    snd-sc8280xp sound: ASoC: failed to instantiate card -517
    genirq: Flags mismatch irq 299. 00002001 (mbhc sw intr) vs. 00002001 (mbhc sw intr)
    wcd938x_codec audio-codec: Failed to request mbhc interrupts -16
    wcd938x_codec audio-codec: mbhc initialization failed
    wcd938x_codec audio-codec: ASoC: error at snd_soc_component_probe on audio-codec: -16
    snd-sc8280xp sound: ASoC: failed to instantiate card -16

Comment 1 Alexander B 2025-12-10 02:35:48 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025120957-CVE-2023-53842-d1e7@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.