EUVD-2025-12988

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-47096

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the...

CVE-2023-52988

CVE-2023-52988 — Linux kernel ALSA: hda/via : The issue arises in the HDA VIA path where snd_hda_get_connections() may return a negative error code, allowing an array access with a negative index in add_secret_dac_path(). This can lead to out-of-bounds access of the conn array, with potential imp...

Linux Distros Unpatched Vulnerability : CVE-2022-49733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is called from OSS PCM SNDCTLDSPSYNC ioctl; namely the function cal...

CVE-2022-49498 ALSA: pcm: Check for null pointer of pointer substream before dereferencing it

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Check for null pointer of pointer substream before dereferencing it Pointer substream is being dereferenced on the assignment of pointer card before substream is being null checked with the macro PCMRUNTIMECHECK...

CVE-2022-49272

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential AB/BA lock with buffermutex and mmaplock syzbot caught a potential deadlock between the PCM runtime-buffermutex and the mm-mmaplock. It was brought by the recent fix to cover the racy read/write and other...

CVE-2024-56532

CVE-2024-56532 affects the Linux kernel’s ALSA us122l code path. The USB disconnect callback previously waited for all fds to close due to snd_card_free(), which could block upper-layer USB ioctls and trigger a soft lockup. The cited fixes switch to snd_card_free_when_closed(), enabling asynchron...

CVE-2024-53180 ALSA: pcm: Add sanity NULL check for the default mmap fault handler

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Add sanity NULL check for the default mmap fault handler A driver might allow the mmap access before initializing its runtime-dmaarea properly. Add a proper NULL check before passing to virttopage for avoiding a panic...

Linux Kernel ALSA "hpioctl.c"内存破坏漏洞

BUGTRAQ ID: 46914 CVE ID: CVE-2011-1169 ALSA是Linux内核中的高级Linux声音体系（英语：Advanced Linux Sound Architecture，缩写为ALSA），为声卡提供的驱动组件，以替代原先的OSS（开放声音系统）。 Linux Kernel在实现上存在内存破坏漏洞，远程攻击者可利用此漏洞运行任意代码或使系统崩溃，拒绝服务合法用户。 用户提供的适配器索引需要检查或越界内核指针可被访问或使用，导致内存破坏。 Linux kernel 2.6.x 厂商补丁： Linux -----...