CVE-2026-46049
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/05/2026
Last modified:
16/06/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
ALSA: ctxfi: Add fallback to default RSR for S/PDIF<br />
<br />
spdif_passthru_playback_get_resources() uses atc->pll_rate as the RSR<br />
for the MSR calculation loop. However, pll_rate is only updated in<br />
atc_pll_init() and not in hw_pll_init(), so it remains 0 after the<br />
card init.<br />
<br />
When spdif_passthru_playback_setup() skips atc_pll_init() for<br />
32000 Hz, (rsr * desc.msr) always becomes 0, causing the loop to spin<br />
indefinitely.<br />
<br />
Add fallback to use atc->rsr when atc->pll_rate is 0. This reflects<br />
the hardware state, since hw_card_init() already configures the PLL<br />
to the default RSR.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.31 (including) | 5.10.258 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.209 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.1.175 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.140 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.12.86 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.13 (including) | 6.18.27 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.19 (including) | 7.0.4 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/09496158f6ebba8830593f8972035c02f97124c1
- https://git.kernel.org/stable/c/25ded535ee261161bcf19dafd525c542e606559d
- https://git.kernel.org/stable/c/30f9494c6f2b53a78822cfb653ffbb1d092d44c8
- https://git.kernel.org/stable/c/615b7a5e5d8be68d52f262579906f7e015ba4606
- https://git.kernel.org/stable/c/7d61662197ecdc458e33e475b6ada7f6da61d364
- https://git.kernel.org/stable/c/95b1ee8442cabbde83b2848e7c6100df90f3a00d
- https://git.kernel.org/stable/c/d0b53842211f73a10ea174100a213f7fa14b9f33
- https://git.kernel.org/stable/c/dfc00979ff00d9dfdfa1df32144a272ee2728102



