CVE-2026-43459

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the ALSA System on Chip (ASoC) core. When a sound card is unbound while a PCM stream is open, the close delayed work workqueue handler calls snd soc dapm stream event(). During the unbind process, snd card disconnect sync() releases PCM file descriptors, which may trigger snd soc dapm stream stop() to schedule new delayed work. Because this occurs after the initial flush in snd soc unbind card(), the new work remains pending. Subsequently, soc remove link components() frees DAPM widgets before the pending work executes, resulting in a use-after-free condition.

Recommendations Apply the update that introduces a flush in soc cleanup card resources() after snd card disconnect sync() and before soc remove link dais() and soc remove link components().