CVE Catalog

CVE-2026-46184

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile - higher than 2% of all known CVEs

Summary

A vulnerability in the Linux kernel related to division by zero in USB handling functions has been fixed. A missing sanity check for bNrChannels in detect_usb_format() could lead to a kernel crash.

Risk Assessment

This vulnerability may lead to system crashes, affecting service availability and operational stability. Devices providing bNrChannels equal to zero could cause significant issues in system operation.

Recommendation

It is recommended to update the Linux kernel to the latest version to mitigate this vulnerability. Additionally, ensure that USB drivers validate bNrChannels values before use.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: sound: ua101: fix division by zero at probe Add a missing sanity check for bNrChannels in detect_usb_format() to prevent a division by zero in playback_urb_complete() and capture_urb_complete(). USB core does not validate class-specific descriptor fields such as bNrChannels, so drivers must verify them before use. If a device provides bNrChannels = 0, frame_bytes becomes zero and is later used as a divisor in the URB completion handlers, leading to a kernel crash.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS