CVE-2026-43279

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the ALSA usb-audio component where the system blindly assumes received packets fit the buffer size when silencing playback URB (USB Request Block) packets in implicit fb mode. If the capture stream setup differs from the playback stream, such as due to USB core max packet size limitations, it can lead to out-of-bounds (OOB) writes to the buffer, resulting in a kernel crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.