CVE-2026-46018
Published: May 27, 2026
Modified: Jun 1, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES parse_uac2_sample_rate_range() caps the number of enumerated rates at MAX_NR_RATES, but it only breaks out of the current rate loop. A malformed UAC2 RANGE response with additional triplets continues parsing the remaining triplets and repeatedly prints "invalid uac2 rates" while probe still holds register_mutex. Stop the whole parse once the cap is reached and return the number of rates collected so far.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 4fa0e81b83503900be277e6273a79651b375e288 - < 5436bc1b07d4656f99412dc72871d250d7d55205affected 4fa0e81b83503900be277e6273a79651b375e288 - < 0da05fedf5e1966b7e7d389866cb86fcf09f4b32affected 4fa0e81b83503900be277e6273a79651b375e288 - < f14bd323eec4b4f0ef662520ec852e593ece1d4caffected 4fa0e81b83503900be277e6273a79651b375e288 - < ab5ba9fd138758ddc50222264ff246b31e397abfaffected 4fa0e81b83503900be277e6273a79651b375e288 - < ba036305323814ec1f8655313b2fa6a0f7048716+7 more versions |
Linux | Linux | affected 3.3unaffected 0 - < 3.3unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now