CVE-2024-58077
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-58077
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58077.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-58077
- Downstream
- Related
- Published
- 2025-03-06T16:13:41Z
- Modified
- 2025-11-04T15:24:13.447079Z
- Summary
- ASoC: soc-pcm: don't use soc_pcm_ret() on .prepare callback
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ASoC: soc-pcm: don't use socpcmret() on .prepare callback
commit 1f5664351410 ("ASoC: lower "no backend DAIs enabled for ... Port" log severity") ignores -EINVAL error message on common socpcmret(). It is used from many functions, ignoring -EINVAL is over-kill.
The reason why -EINVAL was ignored was it really should only be used upon invalid parameters coming from userspace and in that case we don't want to log an error since we do not want to give userspace a way to do a denial-of-service attack on the syslog / diskspace.
So don't use socpcmret() on .prepare callback is better idea.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/301c26a018acb94dd537a4418cefa0f654500c6f
- https://git.kernel.org/stable/c/79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee
- https://git.kernel.org/stable/c/8ec4e8c8e142933eaa8e1ed87168831069250e4e
- https://git.kernel.org/stable/c/90778f31efdf44622065ebbe8d228284104bd26f
- https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1f566435141047ca7db26aa4b0b6647a25badaeeFixed79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1f566435141047ca7db26aa4b0b6647a25badaeeFixed90778f31efdf44622065ebbe8d228284104bd26f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1f566435141047ca7db26aa4b0b6647a25badaeeFixed8ec4e8c8e142933eaa8e1ed87168831069250e4e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1f566435141047ca7db26aa4b0b6647a25badaeeFixed301c26a018acb94dd537a4418cefa0f654500c6f
Affected versions
v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1
v6.13.2
v6.5
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"id": "CVE-2024-58077-1278dcb4",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "_soc_pcm_ret",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 335.0,
"function_hash": "264921710228963359553249400574040140194"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90778f31efdf44622065ebbe8d228284104bd26f"
},
{
"id": "CVE-2024-58077-1c3d95cf",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_be_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 802.0,
"function_hash": "201754143614226841145517011556932049521"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90778f31efdf44622065ebbe8d228284104bd26f"
},
{
"id": "CVE-2024-58077-1ccf1d7b",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_fe_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 879.0,
"function_hash": "9907557058865056437350432703078892323"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ec4e8c8e142933eaa8e1ed87168831069250e4e"
},
{
"id": "CVE-2024-58077-356d186a",
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"line_hashes": [
"160959364234106887809210665394675480414",
"107227088548004331278161081485913526511",
"17221408524948561725872374072238428300",
"161841599188228288373193613729389813751",
"15375579122975917304536962534311718658",
"125720016204437147254449202288422391102",
"94065186205168426635999949568035336282",
"225378852824367501468576862178281212717",
"113759842102760748611107583344515453418",
"174932068364519892995109748382350401976",
"141871713449439059005055930951073954342",
"98758401688576674954868706138714008824",
"43286104131074025536784130329468150674",
"42410033425120486124540658677026378697",
"304086960158165518364562187645173199206",
"338287633192221835934701903228758481394",
"64744943855640855043281368513842944643",
"133176480559712469759774219440195867418",
"268638071030724219747360948098252745567",
"3272798735069254205776563807463448141"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c26a018acb94dd537a4418cefa0f654500c6f"
},
{
"id": "CVE-2024-58077-420b9cc2",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_fe_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 879.0,
"function_hash": "9907557058865056437350432703078892323"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90778f31efdf44622065ebbe8d228284104bd26f"
},
{
"id": "CVE-2024-58077-47e3c204",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "__soc_pcm_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 687.0,
"function_hash": "2523082728778675058935846897675425798"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee"
},
{
"id": "CVE-2024-58077-4cf9a014",
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"line_hashes": [
"160959364234106887809210665394675480414",
"107227088548004331278161081485913526511",
"17221408524948561725872374072238428300",
"161841599188228288373193613729389813751",
"15375579122975917304536962534311718658",
"125720016204437147254449202288422391102",
"94065186205168426635999949568035336282",
"225378852824367501468576862178281212717",
"113759842102760748611107583344515453418",
"174932068364519892995109748382350401976",
"141871713449439059005055930951073954342",
"98758401688576674954868706138714008824",
"43286104131074025536784130329468150674",
"42410033425120486124540658677026378697",
"304086960158165518364562187645173199206",
"338287633192221835934701903228758481394",
"64744943855640855043281368513842944643",
"133176480559712469759774219440195867418",
"268638071030724219747360948098252745567",
"3272798735069254205776563807463448141"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90778f31efdf44622065ebbe8d228284104bd26f"
},
{
"id": "CVE-2024-58077-50d8b3e7",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "_soc_pcm_ret",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 335.0,
"function_hash": "264921710228963359553249400574040140194"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c26a018acb94dd537a4418cefa0f654500c6f"
},
{
"id": "CVE-2024-58077-70e27676",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "__soc_pcm_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 687.0,
"function_hash": "2523082728778675058935846897675425798"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ec4e8c8e142933eaa8e1ed87168831069250e4e"
},
{
"id": "CVE-2024-58077-82e7a44b",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_be_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 802.0,
"function_hash": "201754143614226841145517011556932049521"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ec4e8c8e142933eaa8e1ed87168831069250e4e"
},
{
"id": "CVE-2024-58077-87cab07b",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "__soc_pcm_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 687.0,
"function_hash": "2523082728778675058935846897675425798"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c26a018acb94dd537a4418cefa0f654500c6f"
},
{
"id": "CVE-2024-58077-9b0bc3f1",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "__soc_pcm_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 687.0,
"function_hash": "2523082728778675058935846897675425798"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90778f31efdf44622065ebbe8d228284104bd26f"
},
{
"id": "CVE-2024-58077-a04d7b15",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_fe_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 879.0,
"function_hash": "9907557058865056437350432703078892323"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c26a018acb94dd537a4418cefa0f654500c6f"
},
{
"id": "CVE-2024-58077-a6bec227",
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"line_hashes": [
"160959364234106887809210665394675480414",
"107227088548004331278161081485913526511",
"17221408524948561725872374072238428300",
"161841599188228288373193613729389813751",
"15375579122975917304536962534311718658",
"125720016204437147254449202288422391102",
"94065186205168426635999949568035336282",
"225378852824367501468576862178281212717",
"113759842102760748611107583344515453418",
"174932068364519892995109748382350401976",
"141871713449439059005055930951073954342",
"98758401688576674954868706138714008824",
"43286104131074025536784130329468150674",
"42410033425120486124540658677026378697",
"304086960158165518364562187645173199206",
"338287633192221835934701903228758481394",
"64744943855640855043281368513842944643",
"133176480559712469759774219440195867418",
"268638071030724219747360948098252745567",
"3272798735069254205776563807463448141"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee"
},
{
"id": "CVE-2024-58077-bc83b60d",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "_soc_pcm_ret",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 335.0,
"function_hash": "264921710228963359553249400574040140194"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ec4e8c8e142933eaa8e1ed87168831069250e4e"
},
{
"id": "CVE-2024-58077-c166c2e1",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_fe_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 879.0,
"function_hash": "9907557058865056437350432703078892323"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee"
},
{
"id": "CVE-2024-58077-c346ca9f",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_be_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 802.0,
"function_hash": "201754143614226841145517011556932049521"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee"
},
{
"id": "CVE-2024-58077-d539b63d",
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"line_hashes": [
"160959364234106887809210665394675480414",
"107227088548004331278161081485913526511",
"17221408524948561725872374072238428300",
"161841599188228288373193613729389813751",
"15375579122975917304536962534311718658",
"125720016204437147254449202288422391102",
"94065186205168426635999949568035336282",
"225378852824367501468576862178281212717",
"113759842102760748611107583344515453418",
"174932068364519892995109748382350401976",
"141871713449439059005055930951073954342",
"98758401688576674954868706138714008824",
"43286104131074025536784130329468150674",
"42410033425120486124540658677026378697",
"304086960158165518364562187645173199206",
"338287633192221835934701903228758481394",
"64744943855640855043281368513842944643",
"133176480559712469759774219440195867418",
"268638071030724219747360948098252745567",
"3272798735069254205776563807463448141"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ec4e8c8e142933eaa8e1ed87168831069250e4e"
},
{
"id": "CVE-2024-58077-d5843f28",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "_soc_pcm_ret",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 335.0,
"function_hash": "264921710228963359553249400574040140194"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79b8c7c93beb4f5882c9ee5b9ba73354fa4bc9ee"
},
{
"id": "CVE-2024-58077-de422418",
"signature_type": "Function",
"signature_version": "v1",
"target": {
"function": "dpcm_be_dai_prepare",
"file": "sound/soc/soc-pcm.c"
},
"digest": {
"length": 802.0,
"function_hash": "201754143614226841145517011556932049521"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c26a018acb94dd537a4418cefa0f654500c6f"
}
]