CVE-2026-53350

Source
https://cve.org/CVERecord?id=CVE-2026-53350
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53350.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53350
Downstream
Published
2026-07-01T13:32:27.975Z
Modified
2026-07-08T08:09:46.829315261Z
Summary
ASoC: wm_adsp: Fix NULL dereference when removing firmware controls
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: wm_adsp: Fix NULL dereference when removing firmware controls

In wmadspcontrol_remove() check that the priv pointer is not NULL before attempting to cleanup what it points to.

When csdsp creates a control it calls wmadspcontroladdcb() so that wmadsp can create its own private control data. There are two cases where private data is not created:

  1. The control is a SYSTEM control, so an ALSA control is not created.

  2. The codec driver has registered a controladd() callback that hides the control, so wmadspcontroladd() is not called.

When csdspremove destroys its control list it calls wmadspcontrolremove() for each control. But wmadspcontrolremove() was attempting to cleanup the private data pointed to by cs_ctl->priv without checking the pointer for NULL.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53350.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0700bc2fb94c28459f57a10d2ee2c7ef4cb70862
Fixed
5ee9bbe2af2f373e08d3017f9aef2f2eaf29fbc3
Fixed
10def23b67b42679d5b1a356e1a6f3498bd188c3
Fixed
2f1be283aa777d655525d000d16474b7e7d015ea
Fixed
12e579b889624ec54a201d98fdff975de556c731
Fixed
6effd6f7b0ba1f5d1df702b2ef7460bcc215e9b7
Fixed
7d3fb78b550301e43fdc60312aed733069694426

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53350.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.176
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.143
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.94
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.36
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.13

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53350.json"