CVE-2026-43478
MEDIUM EPSS 1.1%
Published May 13, 20261mo ago · Modified Jun 26, 20266d ago
5.5 CVSS 3.1
Published May 13, 2026 1mo ago
Last Modified Jun 26, 2026 6d ago
Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: rt1011: Use component to get the dapm context in spk_mode_put The correct helper to use in rt1011_recv_spk_mode_put() to retrieve the DAPM context is snd_soc_component_to_dapm(), from kcontrol we will receive NULL pointer.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
1.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 4
References 2
- git.kernel.org https://git.kernel.org/stable/c/30e4b2290cc2a8d1b9ddb9dcb9c981df1f2a7399
- git.kernel.org https://git.kernel.org/stable/c/b10b2b15b45923ff2807eeb034d91a39b0a3e690
Remediation
- git.kernel.org https://git.kernel.org/stable/c/30e4b2290cc2a8d1b9ddb9dcb9c981df1f2a7399
- git.kernel.org https://git.kernel.org/stable/c/b10b2b15b45923ff2807eeb034d91a39b0a3e690