CVE-2026-46018
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk11th percentile - higher than 11% of all known CVEs
Summary
A vulnerability has been identified in the Linux kernel within the ALSA usb-audio module, concerning the parsing of UAC2 sample rate ranges. The issue is that upon reaching the maximum number of samples, the parsing is not halted, leading to improper processing of additional triplets.
Risk Assessment
Organizations may face issues with audio system malfunctions, potentially affecting the performance or stability of audio-dependent applications. Additionally, continuous error logging may lead to system bottlenecks.
Recommendation
It is recommended to update the Linux kernel to the latest version to mitigate this vulnerability and to monitor system logs for potential audio-related issues.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES parse_uac2_sample_rate_range() caps the number of enumerated rates at MAX_NR_RATES, but it only breaks out of the current rate loop. A malformed UAC2 RANGE response with additional triplets continues parsing the remaining triplets and repeatedly prints "invalid uac2 rates" while probe still holds register_mutex. Stop the whole parse once the cap is reached and return the number of rates collected so far.

