Bug 2468241 (CVE-2026-43443)

Summary:	CVE-2026-43443 kernel: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition
Product:	[Other] Security Response	Reporter:	OSIDB Bzimport <bzimport>
Component:	vulnerability	Assignee:	Product Security DevOps Team <prodsec-dev>
Status:	NEW ---	QA Contact:
Severity:	medium	Docs Contact:
Priority:	medium
Version:	unspecified	CC:	rhel-process-autobot, watson-tool-maintainers
Target Milestone:	---	Keywords:	Security
Target Release:	---
Hardware:	All
OS:	Linux
Whiteboard:
Fixed In Version:		Doc Type:	---
Doc Text:	A flaw was found in the Advanced Linux Sound Architecture (ALSA) System on Chip (ASoC) AMD Audio CoProcessor (ACP) machine common driver within the Linux kernel. The `acp_card_rt5682_init()` and `acp_card_rt5682s_init()` functions failed to validate the return values from clock acquisition calls. This oversight could lead to the dereferencing of invalid pointers by clock core functions, resulting in a kernel crash and a Denial of Service (DoS) for the system.	Story Points:	---
Clone Of:		Environment:
Last Closed:		Type:	---
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:

Description OSIDB Bzimport 2026-05-08 15:06:34 UTC

In the Linux kernel, the following vulnerability has been resolved:

ASoC: amd: acp-mach-common: Add missing error check for clock acquisition

The acp_card_rt5682_init() and acp_card_rt5682s_init() functions did not
check the return values of clk_get(). This could lead to a kernel crash
when the invalid pointers are later dereferenced by clock core
functions.

Fix this by:
1. Changing clk_get() to the device-managed devm_clk_get().
2. Adding IS_ERR() checks immediately after each clock acquisition.

Comment 1 Keith Grant 2026-05-09 00:18:59 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026050855-CVE-2026-43443-d120@gregkh/T