CVE-2026-46049

Source
https://cve.org/CVERecord?id=CVE-2026-46049
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46049.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46049
Downstream
Related
Published
2026-05-27T12:57:05.761Z
Modified
2026-06-18T03:56:23.087213325Z
Summary
ALSA: ctxfi: Add fallback to default RSR for S/PDIF
Details

In the Linux kernel, the following vulnerability has been resolved:

ALSA: ctxfi: Add fallback to default RSR for S/PDIF

spdifpassthruplaybackgetresources() uses atc->pllrate as the RSR for the MSR calculation loop. However, pllrate is only updated in atcpllinit() and not in hwpllinit(), so it remains 0 after the card init.

When spdifpassthruplaybacksetup() skips atcpll_init() for 32000 Hz, (rsr * desc.msr) always becomes 0, causing the loop to spin indefinitely.

Add fallback to use atc->rsr when atc->pllrate is 0. This reflects the hardware state, since hwcard_init() already configures the PLL to the default RSR.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46049.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
8cc72361481f00253f1e468ade5795427386d593
Fixed
d0b53842211f73a10ea174100a213f7fa14b9f33
Fixed
615b7a5e5d8be68d52f262579906f7e015ba4606
Fixed
dfc00979ff00d9dfdfa1df32144a272ee2728102
Fixed
25ded535ee261161bcf19dafd525c542e606559d
Fixed
30f9494c6f2b53a78822cfb653ffbb1d092d44c8
Fixed
09496158f6ebba8830593f8972035c02f97124c1
Fixed
95b1ee8442cabbde83b2848e7c6100df90f3a00d
Fixed
7d61662197ecdc458e33e475b6ada7f6da61d364

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46049.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.31
Fixed
5.10.258
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.86
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.27
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46049.json"