CVE-2026-56109

The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 contains a double-free vulnerability in parse def() in src/conf.c that allows attackers to corrupt memory by supplying maliciously crafted ALSA configuration text. When parsing nested compound or array configuration blocks, parse def() fails to check return values before continuing, causing snd config delete() to be called twice on the same already-freed node, resulting in a NULL-pointer write or invalid memory read.