SB2026070250 - NULL pointer dereference in Linux kernel soc codecs
Published: July 2, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) NULL pointer dereference (CVE-ID: CVE-2026-53350)
CWE-ID: CWE-476 - NULL Pointer Dereference
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to a null pointer dereference in wm_adsp_control_remove() when removing firmware controls. A local user can trigger removal of a control without associated private control data to cause a denial of service.
The issue occurs for controls where private data is not created, including SYSTEM controls and controls hidden by a codec driver's control_add() callback.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/10def23b67b42679d5b1a356e1a6f3498bd188c3
- https://git.kernel.org/stable/c/12e579b889624ec54a201d98fdff975de556c731
- https://git.kernel.org/stable/c/2f1be283aa777d655525d000d16474b7e7d015ea
- https://git.kernel.org/stable/c/5ee9bbe2af2f373e08d3017f9aef2f2eaf29fbc3
- https://git.kernel.org/stable/c/6effd6f7b0ba1f5d1df702b2ef7460bcc215e9b7
- https://git.kernel.org/stable/c/7d3fb78b550301e43fdc60312aed733069694426