AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2026-46091: In the Linux kernel, the following vulnerability has been resolved: media: rc: igorplugusb: heed coherency rules In a

infovulnerability

security

Source: NVD/CVE DatabaseMay 27, 2026CVE-2026-46091

Summary

A vulnerability in the Linux kernel's igorplugusb driver (a USB remote control device) allows unsafe memory access because USB request structures weren't following DMA coherency rules (memory access safety requirements when hardware directly accesses system memory). The fix allocates the USB request structure separately to ensure it complies with proper memory coherency standards.

Solution / Mitigation

This vulnerability was resolved in the Linux kernel through commits available at: https://git.kernel.org/stable/c/0adac0ee2c42027d80bac02ea9b576a88f8955d3, https://git.kernel.org/stable/c/0be8fcd9005e3d3b5a61fe34b070a9663adbb4dc, https://git.kernel.org/stable/c/18d6a7c9e4e63c57157e9a57dd9bf3cd38e4c45a, https://git.kernel.org/stable/c/a62ca67e3c72fb297dc7c86495ba8f7329d7f150, and https://git.kernel.org/stable/c/eac69475b01fe1e861dfe3960b57fa95671c132e. Users should update to a patched kernel version containing these fixes.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Disclosure Date

May 27, 2026

Classification

Attack SophisticationModerate

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-46091

First tracked: May 27, 2026 at 02:08 PM

Classified by LLM (prompt v3) · confidence: 95%