CVE-2026-43137 Linux CVE debrief

Who should care

Organizations running Linux systems with Intel SOF audio on HDA platforms, particularly those using echo reference or loopback capture audio configurations. Cloud providers and enterprises with audio-enabled virtualized or containerized workloads on Intel hardware should prioritize patching.

Technical summary

The vulnerability is a NULL pointer dereference (CWE-476) in the Linux kernel's ASoC (ALSA System on Chip) subsystem, specifically in the SOF (Sound Open Firmware) Intel HDA driver. The crash occurs in hda_dai_get_ops.isra.0 when the code attempts to access a widget that was never initialized due to a DAI link/topology mismatch. This commonly affects loopback capture configurations for echo reference that use dummy DAI links. The fix adds proper NULL checking and returns -EINVAL when the widget is not set, preventing the dereference.

Defensive priority

medium

Recommended defensive actions

• Apply kernel updates to patched versions: 6.12.75 or later, 6.18.16 or later, or 6.19.6 or later
• For systems using Intel SOF audio with HDA, verify DAI link topology configuration matches machine driver expectations
• Monitor kernel logs for NULL pointer dereference crashes in snd_sof_intel_hda_common module
• If running custom kernel builds, cherry-pick the relevant stable branch patches

Evidence notes

The vulnerability description and patch references are sourced from the official NVD record. The fix adds a NULL check for the widget before dereferencing, returning an error when the widget is not set. Multiple stable kernel branches received patches: 6.12.75, 6.18.16, and 6.19.6.

Official resources