In the Linux kernel, the following vulnerability has been resolved:
ALSA: usb-audio: Avoid potential endless loop in convertchmapv3()
The convertchmapv3() has a loop with its increment size of csdesc->wLength, but we forgot to validate csdesc->wLength itself, which may lead to potential endless loop by a malformed descriptor.
Add a proper size check to abort the loop for plugging the hole.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46146.json",
"cna_assigner": "Linux"
}