MNBSD-2026-28: sound(4) mmap integer overflow on mapping offset

Severity: Unknown

Affected Package: kernel

Summary: sound(4) mmap integer overflow on mapping offset

Description

The sound(4) mmap path did not reject overflowing mmap offsets, allowing an out-of-bounds mapping. Fixed by rejecting overflowing offsets. Ports the FreeBSD sound(4) mmap security fix.

Affected Versions

kernel

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2026-49417

Published: June 11, 2026
Last Modified: June 11, 2026