CVE-2021-46926

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-46926

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46926.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-46926

Downstream

DEBIAN-CVE-2021-46926

OESA-2024-1392

OESA-2024-1393

OESA-2024-1394

OESA-2024-1395

OESA-2024-1396

OESA-2024-1482

SUSE-SU-2024:1320-1

SUSE-SU-2024:1321-1

SUSE-SU-2024:1466-1

SUSE-SU-2024:1480-1

SUSE-SU-2024:1490-1

UBUNTU-CVE-2021-46926

USN-6973-1

USN-6973-2

USN-6973-3

USN-6973-4

USN-7006-1

Related

Published

2024-02-27T10:15:07Z

Modified

2025-08-09T20:01:27Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

ALSA: hda: intel-sdw-acpi: harden detection of controller

The existing code currently sets a pointer to an ACPI handle before checking that it's actually a SoundWire controller. This can lead to issues where the graph walk continues and eventually fails, but the pointer was set already.

This patch changes the logic so that the information provided to the caller is set when a controller is found.

References

Affected packages