Name of the Vulnerable Software and Affected Versions:

Linux kernel (affected versions not specified)

Description:

The Linux kernel contains a flaw in the ALSA subsystem related to USB audio. Specifically, UAC3 power domain descriptors require validation of their `bLength` variable to prevent out-of-bounds (OOB) access triggered by malicious firmware.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.