497 matches found
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fixed a missing pointer check in the hdacomponentmanagerinit function. The componentmatchadd function may assign the ‘matchptr’ pointer the value ERRPTR-ENOMEM, which will subsequently be dereferenced. The call stack...
CVE-2016-20085
Realtek High Definition Audio Driver 6.0.1.6730 contains an unquoted service path vulnerability that allows local attackers to escalate privileges by placing a malicious executable in the service path. Attackers can insert an executable file in the unquoted path and restart the service to execute...
EUVD-2016-10898
Realtek High Definition Audio Driver 6.0.1.6730 contains an unquoted service path vulnerability that allows local attackers to escalate privileges by placing a malicious executable in the service path. Attackers can insert an executable file in the unquoted path and restart the service to execute...
CVE-2016-20085 Realtek High Definition Audio Driver 6.0.1.6730 Privilege Escalation
Realtek High Definition Audio Driver 6.0.1.6730 contains an unquoted service path vulnerability that allows local attackers to escalate privileges by placing a malicious executable in the service path. Attackers can insert an executable file in the unquoted path and restart the service to execute...
CVE-2016-20085
Realtek High Definition Audio Driver 6.0.1.6730 contains an unquoted service path vulnerability that allows local attackers to escalate privileges by placing a malicious executable in the service path. Attackers can insert an executable file in the unquoted path and restart the service to execute...
CVE-2016-20085
The CVE-2016-20085 entry affects Realtek High Definition Audio Driver version 6.0.1.6730 and describes an unquoted service path privilege-escalation vulnerability. An attacker could place a malicious executable in the unquoted service path and restart the Realtek service to execute code with Loca...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: ASoC: q6afe-clocks: fixed the issue of reprobing of the driver. The q6afe-clocks driver may experience reprobing situations. For example, if the APR services are restarted after a firmware crash. However, currently, the...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ALSA: aoa: i2sbus: fixed a possible memory leak in i2sbusadddev The devsetname function in soundbusaddone allocates memory for the device name. This memory needs to be freed when ofdeviceregister fails. The soundbusdevput functio...
kernel: ALSA: 6fire: fix use-after-free on disconnect
A flaw was found in the Linux kernel's ALSA 6fire USB audio device driver. During the disconnection process of a 6fire USB audio device, a use-after-free vulnerability occurs. This happens when the system attempts to write to memory that has already been deallocated, which can lead to memory...
ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3()
...
Linux Distros Unpatched Vulnerability : CVE-2026-46143
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph opens for playback path. This...
CVE-2026-46143
A flaw was found in the Linux kernel's ASoC Advanced Linux Sound Architecture on Chip qcom q6apm-lpass-dai component. This vulnerability occurs because the prepare function can be invoked multiple times, leading to repeated graph openings for the playback path. This can result in memory leaks,...
CVE-2026-46184
A flaw was found in the Linux kernel's ua101 USB audio driver. A local attacker, by connecting a specially crafted USB audio device, could trigger a division-by-zero error. This occurs because the driver fails to validate the bNrChannels field, leading to a kernel crash. This vulnerability result...
EUVD-2026-32770
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph opens for playback path. This will result in a memory leaks, fix this by adding a check before openi...
CVE-2026-46143
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph opens for playback path. This will result in a memory leaks, fix this by adding a check before openi...
CVE-2026-45963 ASoC: nau8821: Cancel delayed work on component remove
In the Linux kernel, the following vulnerability has been resolved: ASoC: nau8821: Cancel delayed work on component remove Attempting to unload the driver while a jack detection work is pending would likely crash the kernel when it is eventually scheduled for execution: 1984.896308 BUG: unable to...
CVE-2026-46049
ALSA: ctxfi: Add fallback to default RSR for S/PDIF...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uaudio: do not allow userspace to block driver unbind In the unbind callback for fuac1 and fuac2, a call to sndcardfree via gaudiocleanup will disconnect the card and then wait for all resources to be released, which...
CVE-2026-43480
A flaw was found in the Linux kernel, specifically within the ASoC AMD audio driver. This vulnerability stems from a missing error check during clock acquisition, which could cause the system to attempt to access invalid memory. Such an action can lead to a system crash, resulting in a Denial of...
SUSE CVE-2026-43137
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Fix NULL pointer dereference If there's a mismatch between the DAI links in the machine driver and the topology, it is possible that the playback/capture widget is not set, especially in the case of loopbac...