CVE-2026-25068

CVSS v4.0

4.6

Medium

Vector

AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions alsa-lib versions 1.2.2 through 1.2.15.2

Description alsa-lib contains a heap-based buffer overflow in the topology mixer control decoder. The tplg decode control mixer1() function reads the num channels field from untrusted .tplg data and uses it as a loop bound without validating it against the fixed-size channel array SND TPLG MAX CHAN. A crafted topology file with an excessive num channels value can cause out-of-bounds heap writes, leading to a crash.

Recommendations Update to a version of alsa-lib after commit 5f7fe33.

Fix

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129

Related Identifiers

AZL-75773

AZL-76295

BDU:2026-06708

CVE-2026-25068

ECHO-EC6A-FA2D-8CAB

OESA-2026-1582

RHSA-2026:7401

USN-8044-1

Affected Products

Linuxmint

Ubuntu

Alsa-Lib

CVE-2026-25068

Weakness Enumeration

Related Identifiers

Affected Products

References · 26