CVE-2024-50105

MEDIUM 5.5

ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc Commit 15c7fab0e047 ("ASoC: qcom: Move Soundwire runtime stream alloc to soundcards") moved the allocation of Soundwire stream runtime from the Qualcomm Soundwire driver to each individual machine sound card driver, except that it forgot to update SC7280 card. Just like for other Qualcomm sound cards using Soundwire, the card driver should allocate and release the runtime. Otherwise sound playback will result in a NULL pointer dereference or other effect of uninitialized memory accesses (which was confirmed on SDM845 having similar issue).

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Nov 5, 2024
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

15c7fab0e0477d7d7185eac574ca43c15b59b015 < 176a41ebec42a921277cd34e8c0c2e776a9dd6c4 15c7fab0e0477d7d7185eac574ca43c15b59b015 < db7e59e6a39a4d3d54ca8197c796557e6d480b0d

Linux / Linux

6.8

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/176a41ebec42a921277cd34e8c0c2e776a9dd6c4 git.kernel.org: https://git.kernel.org/stable/c/db7e59e6a39a4d3d54ca8197c796557e6d480b0d