CVE-2026-46018

UNKNOWN 0.0

ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES parse_uac2_sample_rate_range() caps the number of enumerated rates at MAX_NR_RATES, but it only breaks out of the current rate loop. A malformed UAC2 RANGE response with additional triplets continues parsing the remaining triplets and repeatedly prints "invalid uac2 rates" while probe still holds register_mutex. Stop the whole parse once the cap is reached and return the number of rates collected so far.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 27, 2026
Last Updated	Jun 1, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

4fa0e81b83503900be277e6273a79651b375e288 < 5436bc1b07d4656f99412dc72871d250d7d55205 4fa0e81b83503900be277e6273a79651b375e288 < 0da05fedf5e1966b7e7d389866cb86fcf09f4b32 4fa0e81b83503900be277e6273a79651b375e288 < f14bd323eec4b4f0ef662520ec852e593ece1d4c 4fa0e81b83503900be277e6273a79651b375e288 < ab5ba9fd138758ddc50222264ff246b31e397abf 4fa0e81b83503900be277e6273a79651b375e288 < ba036305323814ec1f8655313b2fa6a0f7048716 4fa0e81b83503900be277e6273a79651b375e288 < 4d7893a137eadb6163ea4298bf67d74b811d76ef 4fa0e81b83503900be277e6273a79651b375e288 < a0b78639ef09b2e77974a3de3b1c07f6de3c5e56 4fa0e81b83503900be277e6273a79651b375e288 < 3c318f97dcc50b2e0556a1813bd6958678e881fd 44f059fb742aac78cffdab5e0d8fe0c9910c1ded c25a53781f61c78bf2a2fa308bbd35b42ba346f6 3.0.81 < 3.1 3.2.47 < 3.3

Linux / Linux

3.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗