CVE-2026-43095

Source
https://cve.org/CVERecord?id=CVE-2026-43095
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43095.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43095
Downstream
Published
2026-05-06T07:40:26.743Z
Modified
2026-07-08T08:02:14.759341928Z
Summary
ASoC: SDCA: Fix errors in IRQ cleanup
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: SDCA: Fix errors in IRQ cleanup

IRQs are enabled through sdcairqpopulate() from component probe using devmrequestthreaded_irq(), this however means the IRQs can persist if the sound card is torn down. Some of the IRQ handlers store references to the card and the kcontrols which can then fail. Some detail of the crash was explained in [1].

Generally it is not advised to use devm outside of bus probe, so the code is updated to not use devm. The IRQ requests are not moved to bus probe time as it makes passing the sndsoccomponent into the IRQs very awkward and would the require a second step once the component is available, so it is simpler to just register the IRQs at this point, even though that necessitates some manual cleanup.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43095.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
b126394d9ec6f9d8322cf392ba23d4a5f96faf5a
Fixed
b022da127bd9d2217e8f285e643caf5aff6f7f14
Fixed
4e53116437e919c4b9a9d95fb73ae14fe0cfc8f9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43095.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.17.0
Fixed
6.19.14

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43095.json"