CVE-2026-56109
MediumCVSS 6.8Exploitation Probability (EPSS)
Low risk4th percentile — higher than 4% of all known CVEs
Summary
The Advanced Linux Sound Architecture (ALSA) library before version 1.2.16.1 contains a double-free vulnerability in the parse_def() function, allowing attackers to corrupt memory by supplying maliciously crafted ALSA configuration text. The issue occurs when parsing nested configuration blocks, where return values are not checked, leading to snd_config_delete() being called twice on the same already-freed node.
Risk Assessment
This vulnerability could lead to serious security issues, including the potential for arbitrary code execution or system instability. Attackers may exploit this flaw to manipulate memory, posing risks to the integrity and availability of the system.
Recommendation
It is recommended to update the ALSA library to version 1.2.16.1 or later to mitigate this vulnerability. Additionally, monitoring ALSA configurations for malicious changes is advisable.
Original NVD description (English source)
The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 contains a double-free vulnerability in parse_def() in src/conf.c that allows attackers to corrupt memory by supplying maliciously crafted ALSA configuration text. When parsing nested compound or array configuration blocks, parse_def() fails to check return values before continuing, causing snd_config_delete() to be called twice on the same already-freed node, resulting in a NULL-pointer write or invalid memory read.

