CVE-2026-31587

A flaw was found in the Linux kernel, specifically within the ASoC (ALSA System on Chip) qcom q6apm component. This vulnerability arises from incorrect memory management during the dynamic registration of digital audio interface (DAI) components. When both the component and its associated DAIs are allocated using device-managed application programming interfaces (APIs), an incorrect freeing order can occur, leading to a use-after-free condition. This can result in system instability or a denial of service.