CVE-2026-46179

MEDIUM EPSS 2.4%
Published May 28, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 28, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Don't allow pointer operations on unconfigured streams When reporting the pointer for a compressed stream we report the current I/O frame position by dividing the position by the number of channels multiplied by the number of container bytes. These values default to 0 and are only configured as part of setting the stream parameters so this allows a divide by zero to be configured. Validate that they are non zero, returning an error if not

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥6.1  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.88
linuxlinux_kernel*≥6.13  –  <6.18.30
linuxlinux_kernel*≥6.19  –  <7.0.7

References 6

  • git.kernel.org https://git.kernel.org/stable/c/0f0c0c1397a42aacaacae828206ee1b921623952
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/327a64241f30c74b6f35537eb9e1fc6c3cbe060b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4f42dd01f5217465f23a763e27b3984e114d0972
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/76ff6bfc9a809571793f425ba99f6a759108dcf8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98ed1383f597f8a45b6cb816bb20b96d46eeceda
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c5b6285aae050ff1c3ea824ca3d88ac4be1e69c8
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0f0c0c1397a42aacaacae828206ee1b921623952
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/327a64241f30c74b6f35537eb9e1fc6c3cbe060b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4f42dd01f5217465f23a763e27b3984e114d0972
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/76ff6bfc9a809571793f425ba99f6a759108dcf8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98ed1383f597f8a45b6cb816bb20b96d46eeceda
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c5b6285aae050ff1c3ea824ca3d88ac4be1e69c8
    Patch