CVE-2026-52963

Enriched by CISA
 

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI endpoint descriptor scans snd_usbmidi_get_ms_info() validates the internal MIDIStreaming endpoint descriptor size before using baAssocJackID[], but the descriptor walker can still return a class-specific endpoint descriptor whose bLength exceeds the remaining bytes in the endpoint-extra scan. That leaves later flexible-array reads bounded by bLength, but not by the remaining bytes in the endpoint-extra scan. Stop walking when bLength is zero or extends past the remaining endpoint-extra scan.
https://nvd.nist.gov/vuln/detail/CVE-2026-52963

Categories

No category defined

References


 

AFFECTED (from MITRE)

Vendor Product Versions
Linux Linux
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < e2f1260a056eb3215c13c48c5378f3e4112dc3af [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < c65b137d351e21cbc5630e73ef0eb1e1d75f5b20 [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < 728ab0c72e49ca27185067984cd565425eb69b2e [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < 3d3b2b01a3e73828e201ece96f863e7a3e0cdc6e [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < a0226560540c16717efcceaf15c862cf115b01d3 [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < 09141583bd97f4bbd7358e29fd138fe798467cdb [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < c59159ce10e75b568cd0d4b29efcb0fb0ddecc94 [affected]
  • 5c6cd7021a05a02fcf37f360592d7c18d4d807fb < d6854daa67be623860f4e1873fd3d3c275aba4ed [affected]
  • 9e0c71f2f633b0442661966228827d1a33df485f [affected]
  • 0868bc5654c07628c421547f0821650a8c2cb8f3 [affected]
  • 78483c1c7741ffa72991d93d19a75bfdcc2cbf57 [affected]
  • 65d95462001c6ccd9bc9499c1fc9a90eca9de496 [affected]
  • ca767cf0152d18fc299cde85b18d1f46ac21e1ba [affected]
  • 4.4.238 < 4.5 [affected]
  • 4.9.238 < 4.10 [affected]
  • 4.14.200 < 4.15 [affected]
  • 4.19.149 < 4.20 [affected]
  • 5.4.69 < 5.5 [affected]
Linux Linux
  • 5.7 [affected]
  • < 5.7 [unaffected]
  • 5.10.258 ≤ 5.10.* [unaffected]
  • 5.15.209 ≤ 5.15.* [unaffected]
  • 6.1.175 ≤ 6.1.* [unaffected]
  • 6.6.141 ≤ 6.6.* [unaffected]
  • 6.12.91 ≤ 6.12.* [unaffected]
  • 6.18.33 ≤ 6.18.* [unaffected]
  • 7.0.10 ≤ 7.0.* [unaffected]
  • 7.1 ≤ * [unaffected]
© 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

CPE

cpe start end
Configuration 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 5.10.258
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 5.15.209
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 6.1.175
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 6.6.141
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 6.12.91
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 6.18.33
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 7.0.10
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.7 < 7.1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.4.238
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.9.238
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.14.200
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.19.149
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.4.69

REMEDIATION


EXPLOITS

Exploit-db.com

id description date
No known exploits

POC Github

Url
No known exploits

Other Nist (github, ...)

Url
No known exploits

CAPEC

Common Attack Pattern Enumerations and Classifications

id description severity
No entry