| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025091142-CVE-2025-39751-c340@gregkh> Date: Thu, 11 Sep 2025 18:52:52 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2025-39751: ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control The 'sprintf' call in 'add_tuning_control' may exceed the 44-byte buffer if either string argument is too long. This triggers a compiler warning. Replaced 'sprintf' with 'snprintf' to limit string lengths to prevent overflow. The Linux kernel CVE team has assigned CVE-2025-39751 to this issue. Affected and fixed versions =========================== Fixed in 5.4.297 with commit 04fa6f5e94034654da3505d9e908dd9090f0e83c Fixed in 5.10.241 with commit fb8116c38d67d6e23f3b5e34bbc8d9f8c12e81e5 Fixed in 5.15.190 with commit c2dacfe495b72699a9480c95f8eef2285042e474 Fixed in 6.1.149 with commit 86a024a5a521da362fb67a3a6a84f54331503326 Fixed in 6.6.103 with commit 0de69bc9b3661e16c4b08b34949529553906f5e1 Fixed in 6.12.43 with commit 417407cdf587e3ae41a0e728daa562ee88fc1bd6 Fixed in 6.15.11 with commit 195e4cec1007c34ddeb0ce61ef14ce9ab312544f Fixed in 6.16.2 with commit cf494138b9d7f78bcb510b9ea5f5faa6e882a7a3 Fixed in 6.17-rc1 with commit a409c60111e6bb98fcabab2aeaa069daa9434ca0 Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2025-39751 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: sound/pci/hda/patch_ca0132.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/04fa6f5e94034654da3505d9e908dd9090f0e83c https://git.kernel.org/stable/c/fb8116c38d67d6e23f3b5e34bbc8d9f8c12e81e5 https://git.kernel.org/stable/c/c2dacfe495b72699a9480c95f8eef2285042e474 https://git.kernel.org/stable/c/86a024a5a521da362fb67a3a6a84f54331503326 https://git.kernel.org/stable/c/0de69bc9b3661e16c4b08b34949529553906f5e1 https://git.kernel.org/stable/c/417407cdf587e3ae41a0e728daa562ee88fc1bd6 https://git.kernel.org/stable/c/195e4cec1007c34ddeb0ce61ef14ce9ab312544f https://git.kernel.org/stable/c/cf494138b9d7f78bcb510b9ea5f5faa6e882a7a3 https://git.kernel.org/stable/c/a409c60111e6bb98fcabab2aeaa069daa9434ca0
Powered by blists - more mailing lists