Описание
In the Linux kernel, the following vulnerability has been resolved:
ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control
The 'sprintf' call in 'add_tuning_control' may exceed the 44-byte buffer if either string argument is too long. This triggers a compiler warning. Replaced 'sprintf' with 'snprintf' to limit string lengths to prevent overflow.
In the Linux kernel, the following vulnerability has been resolved:
ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control
The 'sprintf' call in 'add_tuning_control' may exceed the 44-byte buffer if either string argument is too long. This triggers a compiler warning. Replaced 'sprintf' with 'snprintf' to limit string lengths to prevent overflow.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-39751
- https://git.kernel.org/stable/c/04fa6f5e94034654da3505d9e908dd9090f0e83c
- https://git.kernel.org/stable/c/0de69bc9b3661e16c4b08b34949529553906f5e1
- https://git.kernel.org/stable/c/195e4cec1007c34ddeb0ce61ef14ce9ab312544f
- https://git.kernel.org/stable/c/417407cdf587e3ae41a0e728daa562ee88fc1bd6
- https://git.kernel.org/stable/c/86a024a5a521da362fb67a3a6a84f54331503326
- https://git.kernel.org/stable/c/a409c60111e6bb98fcabab2aeaa069daa9434ca0
- https://git.kernel.org/stable/c/c2dacfe495b72699a9480c95f8eef2285042e474
- https://git.kernel.org/stable/c/cf494138b9d7f78bcb510b9ea5f5faa6e882a7a3
- https://git.kernel.org/stable/c/fb8116c38d67d6e23f3b5e34bbc8d9f8c12e81e5
CVE ID
Связанные уязвимости
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control The 'sprintf' call in 'add_tuning_control' may exceed the 44-byte buffer if either string argument is too long. This triggers a compiler warning. Replaced 'sprintf' with 'snprintf' to limit string lengths to prevent overflow.
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Уязвимость функции add_tuning_control компонента sound/pci/hda/patch_ca0132.c ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании