CVE-2025-68344 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: wavefront: Fix integer overflow in sample size validation The wavefront_send_sample() function has an integer overflow issue when validating sample size. The header->size field is u32 but gets cast to int for comparison with dev->freemem Fix by using unsigned comparison to avoid integer overflow.

PUBLISHED Reserved 2025-12-16 | Published 2025-12-24 | Updated 2025-12-24 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 5588b7c86effffa9bb55383a38800649d7b40778

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before bca11de0a277b8baeb7d006f93b543c907b6e782

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 1823e08f76c68b9e1d26f6d5ef831b96f61a62a0

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 0c4a13ba88594fd4a27292853e736c6b4349823d

affected

Default status

affected

2.6.12

affected

Any version before 2.6.12

unaffected

6.12.63 (semver)

unaffected

6.17.13 (semver)

unaffected

6.18.2 (semver)

unaffected

6.19-rc1 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/5588b7c86effffa9bb55383a38800649d7b40778

git.kernel.org/...c/bca11de0a277b8baeb7d006f93b543c907b6e782

git.kernel.org/...c/1823e08f76c68b9e1d26f6d5ef831b96f61a62a0

git.kernel.org/...c/0c4a13ba88594fd4a27292853e736c6b4349823d

cve.org (CVE-2025-68344)

nvd.nist.gov (CVE-2025-68344)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu