Bug 2464389 (CVE-2026-31775) - CVE-2026-31775 kernel: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization
Summary: CVE-2026-31775 kernel: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initializa...
Keywords:
Status: NEW
Alias: CVE-2026-31775
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-05-01 15:03 UTC by OSIDB Bzimport
Modified: 2026-05-01 23:21 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2026-05-01 15:03:58 UTC 
In the Linux kernel, the following vulnerability has been resolved:

ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization

The recent refactoring of xfi driver changed the assignment of
atc->daios[] at atc_get_resources(); now it loops over all enum
DAIOTYP entries while it looped formerly only a part of them.
The problem is that the last entry, SPDIF1, is a special type that
is used only for hw20k1 CTSB073X model (as a replacement of SPDIFIO),
and there is no corresponding definition for hw20k2.  Due to the lack
of the info, it caused a kernel crash on hw20k2, which was already
worked around by the commit b045ab3dff97 ("ALSA: ctxfi: Fix missing
SPDIFI1 index handling").

This patch addresses the root cause of the regression above properly,
simply by skipping the incorrect SPDIF1 type in the parser loop.

For making the change clearer, the code is slightly arranged, too.
Comment 1 Keith Grant 2026-05-01 23:18:55 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026050149-CVE-2026-31775-366f@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.