CVE-2026-31776

Published: May 1, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Fix missing SPDIFI1 index handling SPDIF1 DAIO type isn't properly handled in daio_device_index() for hw20k2, and it returned -EINVAL, which ended up with the out-of-bounds array access. Follow the hw20k1 pattern and return the proper index for this type, too.

Vendor	Product	Versions
Linux	Linux	affected `a2dbaeb5c61ef110ceefe0d48fe94d428d3bcf16 - < 950decf59d4e978b60a792ce0b3e1555a608f489` affected `a2dbaeb5c61ef110ceefe0d48fe94d428d3bcf16 - < b045ab3dff97edae6d538eeff900a34c098761f8`
Linux	Linux	affected `6.19` unaffected `0 - < 6.19` unaffected `6.19.12 - <= 6.19.` unaffected `7.0 - <= `

References

https://git.kernel.org/stable/c/950decf59d4e978b60a792ce0b3e1555a608f489

https://git.kernel.org/stable/c/b045ab3dff97edae6d538eeff900a34c098761f8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-31776

Description

Affected Products

References