Copyright © 2012 Red Hat, Inc. All rights reserved. Low 2026-05-27T00:00:00 kernel: ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CWE-805

A flaw was found in the Linux kernel's Advanced Linux Sound Architecture (ALSA) control component. Improper validation of the buffer length before a string length operation in the `snd_ctl_elem_init_enum_names()` function can lead to a system panic. This vulnerability could allow a local attacker to trigger a Denial of Service (DoS), making the system unresponsive.

Red Hat Enterprise Linux 10 Fix deferred kernel Red Hat Enterprise Linux 6 Out of support scope kernel Red Hat Enterprise Linux 7 Fix deferred kernel Red Hat Enterprise Linux 7 Fix deferred kernel-rt Red Hat Enterprise Linux 8 Fix deferred kernel Red Hat Enterprise Linux 8 Fix deferred kernel-rt Red Hat Enterprise Linux 9 Fix deferred kernel Red Hat Enterprise Linux 9 Fix deferred kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-46088 https://nvd.nist.gov/vuln/detail/CVE-2026-46088 https://lore.kernel.org/linux-cve-announce/2026052702-CVE-2026-46088-76b7@gregkh/T