CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/27 8:10 p.m.•5 views

CVE-2026-46049

A flaw was found in the ALSA Advanced Linux Sound Architecture ctxfi driver in the Linux kernel. When processing S/PDIF Sony/Philips Digital Interface Format passthrough playback at 32000 Hz, a missing update to the pllrate can cause an infinite loop. This can lead to a denial of service DoS for ...

5.5CVSS5.8AI score0.00032EPSS

NVD•added 2026/05/27 2:17 p.m.•7 views

CVE-2026-46049

0.00032EPSS

Exploits0References8

Positive Technologies•added 2026/05/27 12:0 a.m.•8 views

PT-2026-43916

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ALSA ctxfi component where the spdif passthru playback get resources function uses atc-pll rate as the Reference Sample Rate RSR for the Master Sample Rate MSR...

9.8CVSS5.9AI score0.00254EPSS

Exploits12References284

CNNVD•added 2026/05/27 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the uninitialized pllrate variable in the ALSA ctxfi driver. This vulnerability may lead to an...

5.8AI score0.00032EPSS

Exploits0References5

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Do not enumerate SPDIF1 during DAIO initialization The recent refactoring of the xfi driver changed the way the assignment of atc-daios in atcgetresources works. Previously, only a subset of the DAIOTYP entries was...

SUSE CVE•added 2026/05/06 1:42 a.m.•3 views

Exploits0References1

SUSE CVE-2026-31775

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization The recent refactoring of xfi driver changed the assignment of atc-daios at atcgetresources; now it loops over all enum DAIOTYP entries while it looped formerly only a pa...

5.8AI score0.00017EPSS

SUSE CVE•added 2026/05/06 1:42 a.m.•2 views

SUSE CVE-2026-31776

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Fix missing SPDIFI1 index handling SPDIF1 DAIO type isn't properly handled in daiodeviceindex for hw20k2, and it returned -EINVAL, which ended up with the out-of-bounds array access. Follow the hw20k1 pattern and...

5.7AI score0.00017EPSS

SUSE CVE•added 2026/05/06 1:42 a.m.•3 views

SUSE CVE-2026-31777

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Check the error for index mapping The ctxfi driver blindly assumed a proper value returned from daiodeviceindex, but it's not always true. Add a proper error check to deal with the error from the function...

5.8AI score0.00017EPSS

Tenable Nessus•added 2026/05/02 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31777

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: ctxfi: Check the error for index mapping The ctxfi driver blindly assumed a proper value returned from daiodeviceindex, but it's not always true. Add a...

Tenable Nessus•added 2026/05/02 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-31775

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization The recent refactoring of xfi...

5.5CVSS5.7AI score0.00017EPSS

RedhatCVE•added 2026/05/01 11:33 p.m.•2 views

CVE-2026-31777

A flaw was found in the Linux kernel's ALSA ctxfi driver. The driver failed to properly validate the return value from the daiodeviceindex function. This oversight could lead to the driver making incorrect assumptions, potentially causing system instability. Mitigation To mitigate this issue,...

RedhatCVE•added 2026/05/01 11:27 p.m.•1 views

CVE-2026-31776

A flaw was found in the Linux kernel's ALSA ctxfi driver. The daiodeviceindex function for hw20k2 improperly handles the SPDIF1 DAIO type, leading to a missing index. This issue can result in an out-of-bounds array access, which may cause system instability or a denial of service DoS. Mitigation ...

7.8CVSS5.8AI score0.00017EPSS

RedhatCVE•added 2026/05/01 11:22 p.m.•2 views

CVE-2026-31775

A flaw was found in the Linux kernel's ALSA Advanced Linux Sound Architecture ctxfi driver. An issue during the initialization of Digital Audio Input/Output DAIO resources incorrectly enumerates the SPDIF1 type, which is not defined for certain hardware models. This can lead to a kernel crash on...

NVD•added 2026/05/01 3:16 p.m.•3 views

CVE-2026-31777

5.5CVSS0.00017EPSS

NVD•added 2026/05/01 3:16 p.m.•1 views

CVE-2026-31776

7.8CVSS0.00017EPSS

NVD•added 2026/05/01 3:16 p.m.•2 views

CVE-2026-31775

5.5CVSS0.00017EPSS

Debian CVE•added 2026/05/01 2:15 p.m.•3 views

CVE-2026-31777

5.5CVSS5.7AI score0.00017EPSS

Exploits0

CVE•added 2026/05/01 2:15 p.m.•8 views

CVE-2026-31777

The CVE-2026-31777 entry concerns the Linux kernel ALSA ctxfi driver. The root cause is the driver’s missing validation of the return value from daio_device_index(), leading to incorrect assumptions and potential system instability. Documents indicate this has been resolved via patches. Remediati...

Exploits0References2Affected Software1

Cvelist•added 2026/05/01 2:15 p.m.•25 views

CVE-2026-31777 ALSA: ctxfi: Check the error for index mapping

0.00017EPSS