CVE-2026-53291

ALSA: hda/conexant: Fix missing error check for jack detection

EPSS 0.2%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

26 Jun 2026Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/conexant: Fix missing error check for jack detection In cx_probe(), the return value of snd_hda_jack_detect_enable_callback() is ignored. This function returns a pointer, and if it fails (e.g., due to memory allocation failure), it returns an error pointer which must be checked using IS_ERR(). If the registration fails, the driver continues to probe, but the jack detection callback will not be registered. This can lead to a kernel crash later when the driver attempts to handle jack events or accesses the uninitialized structure. Check the return value using IS_ERR() and propagate the error via PTR_ERR() to the probe caller.

Affected products

Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://git.kernel.org/stable/c/1da5c73f3793b224696617a2a21def7500ba18d6 https://git.kernel.org/stable/c/49c2c5924552e1d2f8b635dee663abebbb7cf63b https://git.kernel.org/stable/c/a2a33e87a2ffce3046c574d24eec4390c27c9365 https://git.kernel.org/stable/c/b0e2333a231107adedd38c6fcfe1adc6162716fc https://git.kernel.org/stable/c/d68f753d89f4ef6e410d7e8b7e8ab2fdde921b80 https://git.kernel.org/stable/c/dd110cc00cf854a8ecd8d003127a4178c28574ea https://git.kernel.org/stable/c/f837c7b85143a7c54140ff41ad5c076b73cd9933