CVE-2026-46157 in Linuxinfo

Zusammenfassung

von MITRE • 28.05.2026

In the Linux kernel, the following vulnerability has been resolved:

ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger

Currently the runtime.oss.trigger field may be accessed concurrently without protection, which may lead to the data race. And, in this case, it may lead to more severe problem because it's a bit field; as writing the data, it may overwrite other bit fields as well, which confuses the operation completely, as spotted by fuzzing.

Fix it by covering runtime.oss.trigger bit fled also with the existing params_lock mutex in both snd_pcm_oss_get_trigger() and snd_pcm_oss_poll().

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Linux

Reservieren

13.05.2026

Veröffentlichung

28.05.2026

Moderieren

akzeptiert

Eintrag

VDB-366633

CPE

bereit

CWE

CWE-667 (bestätigt)

CVSS

4.8 (VulDB)

EPSS

0.00013

KEV

nein

Aktivitäten

low

Sektor

Industry, Insurance, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-46157
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-46157
CVE Details	https://www.cvedetails.com/cve/CVE-2026-46157/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!