CVE-2026-46262
Reverted Lock Fix in Linux Kernel ASoC fsl_xcvr
Publication date: 2026-06-03
Last updated on: 2026-06-03
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves a deadlock issue in the Linux kernel's ASoC fsl_xcvr driver. A previous fix attempted to acquire a read lock on a resource (card->controls_rwsem) inside the function fsl_xcvr_mode_put(), but this function is already called while holding a write lock on the same resource. Acquiring a read lock while holding a write lock in the same thread causes a deadlock, leading to a hung task.
How can this vulnerability impact me? :
The vulnerability can cause the system to hang or become unresponsive due to a deadlock situation in the kernel. This can affect system stability and availability, potentially disrupting audio-related functionality managed by the ALSA core and the fsl_xcvr driver.
What immediate steps should I take to mitigate this vulnerability?
The vulnerability involves a deadlock caused by acquiring a read lock while already holding a write lock in the same thread within the Linux kernel's ASoC fsl_xcvr driver.
To mitigate this vulnerability, ensure that your Linux kernel includes the fix that reverts the problematic commit f51424872760, which removes the unnecessary lock acquisition in fsl_xcvr_mode_put().
Updating your Linux kernel to a version released after 2026-06-03 that contains this revert patch is the recommended immediate step.