CVE-2026-43095

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ASoC: SDCA: Fix errors in IRQ cleanup<br /> <br /> IRQs are enabled through sdca_irq_populate() from component probe<br /> using devm_request_threaded_irq(), this however means the IRQs can<br /> persist if the sound card is torn down. Some of the IRQ handlers<br /> store references to the card and the kcontrols which can then<br /> fail. Some detail of the crash was explained in [1].<br /> <br /> Generally it is not advised to use devm outside of bus probe, so<br /> the code is updated to not use devm. The IRQ requests are not moved<br /> to bus probe time as it makes passing the snd_soc_component into<br /> the IRQs very awkward and would the require a second step once the<br /> component is available, so it is simpler to just register the IRQs<br /> at this point, even though that necessitates some manual cleanup.