In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Add missing mutex lock around get meter levels As scarlett2_meter_ctl_get() uses meter_level_map[], the data_mutex should be locked while accessing it.
https://git.kernel.org/stable/c/993f7b42fa066b055e3a19b7f76ad8157c0927a0
https://git.kernel.org/stable/c/74e3de7cdcc31ce75ab42350ae0946eff62a2da2