CVE-2026-49417
Multiple vulnerabilities in the sound(4) mmap path
Description
Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping remained valid. The freed memory could then be reused elsewhere while still accessible through the stale mapping. The /dev/dsp device nodes are world-accessible by default. On a system with an audio device, either issue allows an unprivileged local user to read and write kernel memory, which can be used to escalate privileges, potentially gaining full control of the affected system. At a minimum, an attacker can crash the kernel, resulting in a Denial of Service (DoS).
INFO
Published Date :
June 27, 2026, 8:48 a.m.
Last Modified :
June 27, 2026, 8:48 a.m.
Remotely Exploit :
No
Source :
freebsd
Affected Products
The following products are affected by CVE-2026-49417
vulnerability.
Even if cvefeed.io is aware of the exact versions of the
products
that
are
affected, the information is not represented in the table below.
No affected product recoded yet
Solution
- Apply vendor-supplied security patches.
- Restrict access to /dev/dsp device nodes.
- Update system audio drivers.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2026-49417 vulnerability anywhere in the article.