CVE-2026-43204 PUBLISHED

ASoC: qcom: q6asm: drop DSP responses for closed data streams

Assigner: Linux
Reserved: 01.05.2026 Published: 06.05.2026 Updated: 06.05.2026

In the Linux kernel, the following vulnerability has been resolved:

ASoC: qcom: q6asm: drop DSP responses for closed data streams

'Commit a354f030dbce ("ASoC: qcom: q6asm: handle the responses after closing")' attempted to ignore DSP responses arriving after a stream had been closed.

However, those responses were still handled, causing lockups.

Fix this by unconditionally dropping all DSP responses associated with closed data streams.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 3249251eac6081d5169ba09f2d9cca66ab0cab0d (excl.) affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 8a066a81ee0c1b6cdbd81393536c3b2d19ccef25 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected unaffected from 6.19.6 to 6.19.* (incl.) unaffected from 7.0 to * (incl.)

CVE-2026-43204 PUBLISHED

ASoC: qcom: q6asm: drop DSP responses for closed data streams

Product Status

References