{"id":"CVE-2026-46184","summary":"sound: ua101: fix division by zero at probe","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nsound: ua101: fix division by zero at probe\n\nAdd a missing sanity check for bNrChannels in detect_usb_format()\nto prevent a division by zero in playback_urb_complete() and\ncapture_urb_complete().\n\nUSB core does not validate class-specific descriptor fields such\nas bNrChannels, so drivers must verify them before use. If a\ndevice provides bNrChannels = 0, frame_bytes becomes zero and is\nlater used as a divisor in the URB completion handlers, leading\nto a kernel crash.","modified":"2026-06-12T03:56:53.445211464Z","published":"2026-05-28T09:36:38.134Z","related":["openSUSE-SU-2026:10954-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46184.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0ff2b713f406e9ecadb406014d74e7a020ac12b1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/593dd7e6c890d8e4ca21b3e2f796b7cb8e8da983"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6162e8212e88c39492d981b248b5e37002486c66"},{"type":"WEB","url":"https://git.kernel.org/stable/c/66d9c2ed081f299cfb201d9e9c4faf920e56e0bf"},{"type":"WEB","url":"https://git.kernel.org/stable/c/aae1498c59f48d03ee358df84f07a5af9885f827"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d1f73f169c1014463b5060e3f60813e13ddc7b87"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e02897c5b041c9b980055fa9a6167023d6dc5caf"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f1862dbf09080254c52175a448290c784dd7d3de"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46184.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-46184"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"63978ab3e3e963db28093b53bb4598f2702e1ad7"},{"fixed":"e02897c5b041c9b980055fa9a6167023d6dc5caf"},{"fixed":"aae1498c59f48d03ee358df84f07a5af9885f827"},{"fixed":"66d9c2ed081f299cfb201d9e9c4faf920e56e0bf"},{"fixed":"6162e8212e88c39492d981b248b5e37002486c66"},{"fixed":"593dd7e6c890d8e4ca21b3e2f796b7cb8e8da983"},{"fixed":"0ff2b713f406e9ecadb406014d74e7a020ac12b1"},{"fixed":"f1862dbf09080254c52175a448290c784dd7d3de"},{"fixed":"d1f73f169c1014463b5060e3f60813e13ddc7b87"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46184.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"2.6.34"},{"fixed":"5.10.258"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.209"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.175"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.140"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.88"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.30"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"7.0.7"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46184.json"}}],"schema_version":"1.7.5"}