CVE-2026-43478

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-43478
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43478.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43478
Downstream
Published
2026-05-13T15:08:27.352Z
Modified
2026-05-24T03:55:13.855268579Z
Summary
ASoC: codecs: rt1011: Use component to get the dapm context in spk_mode_put
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: codecs: rt1011: Use component to get the dapm context in spkmodeput

The correct helper to use in rt1011recvspkmodeput() to retrieve the DAPM context is sndsoccomponenttodapm(), from kcontrol we will receive NULL pointer.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43478.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5b35bb517f27fc2401ec3cfd8c02a127627a0188
Fixed
b10b2b15b45923ff2807eeb034d91a39b0a3e690
Fixed
30e4b2290cc2a8d1b9ddb9dcb9c981df1f2a7399

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43478.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.9

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43478.json"