LiveActive security incident?Get immediate response
CVE Record

CVE-2023-53607: ALSA: ymfpci: Fix BUG_ON in probe function

In the Linux kernel, the following vulnerability has been resolved: ALSA: ymfpci: Fix BUG_ON in probe function The snd_dma_buffer.bytes field now contains the aligned size, which this snd_BUG_ON() did not account for, resulting in the following: [ 9.625915] ------------[ cut here ]------------ [ 9.633440] WARNING: CPU: 0 PID: 126 at sound/pci/ymfpci/ymfpci_main.c:2168 snd_ymfpci_create+0x681/0x698 [snd_ymfpci] [ 9.648926] Modules linked in: snd_ymfpci(+) snd_intel_dspcfg kvm(+) snd_intel_sdw_acpi snd_ac97_codec snd_mpu401_uart snd_opl3_lib irqbypass snd_hda_codec gameport snd_rawmidi crct10dif_pclmul crc32_pclmul cfg80211 snd_hda_core polyval_clmulni polyval_generic gf128mul snd_seq_device ghash_clmulni_intel snd_hwdep ac97_bus sha512_ssse3 rfkill snd_pcm aesni_intel tg3 snd_timer crypto_simd snd mxm_wmi libphy cryptd k10temp fam15h_power pcspkr soundcore sp5100_tco wmi acpi_cpufreq mac_hid dm_multipath sg loop fuse dm_mod bpf_preload ip_tables x_tables ext4 crc32c_generic crc16 mbcache jbd2 sr_mod cdrom ata_generic pata_acpi firewire_ohci crc32c_intel firewire_core xhci_pci crc_itu_t pata_via xhci_pci_renesas floppy [ 9.711849] CPU: 0 PID: 126 Comm: kworker/0:2 Not tainted 6.1.21-1-lts #1 08d2e5ece03136efa7c6aeea9a9c40916b1bd8da [ 9.722200] Hardware name: To Be Filled By O.E.M. To Be Filled By O.E.M./990FX Extreme4, BIOS P2.70 06/05/2014 [ 9.732204] Workqueue: events work_for_cpu_fn [ 9.736580] RIP: 0010:snd_ymfpci_create+0x681/0x698 [snd_ymfpci] [ 9.742594] Code: 8c c0 4c 89 e2 48 89 df 48 c7 c6 92 c6 8c c0 e8 15 d0 e9 ff 48 83 c4 08 44 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d3 7a 33 e3 <0f> 0b e9 cb fd ff ff 41 bd fb ff ff ff eb db 41 bd f4 ff ff ff eb [ 9.761358] RSP: 0018:ffffab64804e7da0 EFLAGS: 00010287 [ 9.766594] RAX: ffff8fa2df06c400 RBX: ffff8fa3073a8000 RCX: ffff8fa303fbc4a8 [ 9.773734] RDX: ffff8fa2df06d000 RSI: 0000000000000010 RDI: 0000000000000020 [ 9.780876] RBP: ffff8fa300b5d0d0 R08: ffff8fa3073a8e50 R09: 00000000df06bf00 [ 9.788018] R10: ffff8fa2df06bf00 R11: 00000000df068200 R12: ffff8fa3073a8918 [ 9.795159] R13: 0000000000000000 R14: 0000000000000080 R15: ffff8fa2df068200 [ 9.802317] FS: 0000000000000000(0000) GS:ffff8fa9fec00000(0000) knlGS:0000000000000000 [ 9.810414] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 9.816158] CR2: 000055febaf66500 CR3: 0000000101a2e000 CR4: 00000000000406f0 [ 9.823301] Call Trace: [ 9.825747] <TASK> [ 9.827889] snd_card_ymfpci_probe+0x194/0x950 [snd_ymfpci b78a5fe64b5663a6390a909c67808567e3e73615] [ 9.837030] ? finish_task_switch.isra.0+0x90/0x2d0 [ 9.841918] local_pci_probe+0x45/0x80 [ 9.845680] work_for_cpu_fn+0x1a/0x30 [ 9.849431] process_one_work+0x1c7/0x380 [ 9.853464] worker_thread+0x1af/0x390 [ 9.857225] ? rescuer_thread+0x3b0/0x3b0 [ 9.861254] kthread+0xde/0x110 [ 9.864414] ? kthread_complete_and_exit+0x20/0x20 [ 9.869210] ret_from_fork+0x22/0x30 [ 9.872792] </TASK> [ 9.874985] ---[ end trace 0000000000000000 ]---

UnknownCVSS not scoredNot KEV-listedUpdated
Glexia's TakeAutomated analysislow

Security readout for executives and security teams

Plain-English summary

This CVE is a Linux kernel bug in the ALSA ymfpci sound driver. On affected kernels, probing the Yamaha YMFPCI PCI audio driver can trigger a kernel warning/BUG_ON because a DMA buffer size check did not account for alignment. Business impact appears limited to systems using this specific driver path; public sources do not show active exploitation.

Executive priority

Treat as low priority unless the organization maintains Linux endpoints or appliances with this legacy audio driver enabled. No active exploitation is cited, and exposure appears narrow, but kernel updates should still be folded into normal patch cycles.

Technical view

The issue is in sound/pci/ymfpci/ymfpci_main.c during snd_ymfpci_create. snd_dma_buffer.bytes now stores an aligned size, but the driver’s snd_BUG_ON check compared against an unaligned expectation, causing a probe-time warning/BUG_ON. Kernel stable commits are referenced as the resolution across affected Linux branches.

Likely exposure

Exposure is most likely on Linux systems running affected kernel versions where the snd_ymfpci ALSA PCI driver is present and probes Yamaha YMFPCI-compatible hardware. General Linux servers without this legacy audio hardware or driver path are less likely to be exposed.

Exploitation context

The source bundle marks KEV as false and provides no evidence of active exploitation, public exploit code, or remote attack paths. The described failure occurs during driver probe, so practical exposure depends on local hardware, kernel configuration, and module loading.

Researcher notes

Evidence is limited to the CVE record and kernel stable references. The bundle does not provide CVSS, CWE, exploitability analysis, or a named security impact beyond the probe-time BUG_ON/warning. Avoid extrapolating remote exploitability or privilege impact without vendor confirmation.

Mitigation direction

  • Update affected Linux kernels to versions containing the referenced stable fixes.
  • Use distribution kernel updates rather than unreviewed local kernel patches where possible.
  • Check vendor or distribution guidance for fixed package availability.
  • Prioritize systems that load snd_ymfpci or contain matching PCI audio hardware.

Validation and detection

  • Compare deployed kernel versions against the affected and fixed records in the CVE bundle.
  • Check whether the snd_ymfpci module is present or loaded on Linux assets.
  • Review boot or kernel logs for ymfpci probe warnings matching the CVE description.
  • Confirm the updated kernel includes the relevant referenced stable commit.
Prepared
Confidence
medium
Sources
7

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cve · low confidence lookup

CVE-2023-53607 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Unknown
CVSS
Not scored
Known Exploited
No
Published
Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

0CVSS vectors
3Timeline events
0ADP providers
6Source links

Vulnerability timeline

Timeline events are normalized from CVE metadata, CNA source timelines, ADP timelines, and KEV metadata when present.

  1. CVE reservedCVE Program

    The CVE ID was reserved by the assigning CNA.

  2. CVE publishedCVE Program

    The CVE record was published.

  3. CVE updatedCVE Program

    The CVE record metadata indicates this as the latest update time.

Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
LinuxLinux4faf4bbc2d600a921052ff45b1b5914d583d9046, 5c1733e33c888a3cb7f576564d8ad543d5ad4a9e, 5c1733e33c888a3cb7f576564d8ad543d5ad4a9e, 5c1733e33c888a3cb7f576564d8ad543d5ad4a9e, 5c1733e33c888a3cb7f576564d8ad543d5ad4a9e, f52ac912c14c5bf426c0f9e0c6236dbcdf61664e, 19241a56c5d6e74b32b1fbb1bd3ba7edef421f16, 05243cf88f7fa5e9dd5659399bc9307ff3fb675f, 015af30d373d33548c9afcffbbaaf266459731de, 5.10.134, 4.9.325, 4.14.290, 4.19.254, 5.4.208unaffected
LinuxLinux5.11, 0, 5.10.177, 5.15.106, 6.1.23, 6.2.10, 6.3affected
Weakness

CWE details

No CWE listed

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.