Not a user yet?
Log in Register for free Suggest a product
Update

USN-8044-1: alsa-lib vulnerability

Ubuntu DesktopUbuntu Desktop
Canonical

USN-8044-1: alsa-lib vulnerability

Publication date: 6 February 2026
Overview: alsa-lib could be made to crash or run programs if it opened a specially crafted file.

Packages
alsa-lib - shared library for ALSA applications

Details
It was discovered that alsa-lib incorrectly handled the topology mixer
control decoder. A local attacker could use a specially crafted topology
file to cause alsa-lib to crash, resulting in a denial of service, or
possibly execute arbitrary code.

Update instructions
The problem can be corrected by updating your system to the following package versions:

  • 25.10 questing libasound2t64 – 1.2.14-1ubuntu1.1
  • 24.04 LTS noble libasound2t64 – 1.2.11-1ubuntu0.2
  • 22.04 LTS jammy libasound2 – 1.2.6.1-1ubuntu1.1
More updatesTo the product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Receive Important Update Messages Stay tuned for upcoming Canonical updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad