CVE-2025-68344

Summary

In the Linux kernel, the following vulnerability has been resolved:

ALSA: wavefront: Fix integer overflow in sample size validation

The wavefront_send_sample() function has an integer overflow issue when validating sample size. The header->size field is u32 but gets cast to int for comparison with dev->freemem

Fix by using unsigned comparison to avoid integer overflow.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 488bf86d60077f52810c60dbdf7468c277880167affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < d2f5d8cf1eadb7b33e476f59aa9c6653e4f2b937affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 4f811071e702fbb74933526e2fbadf8c4ed0c0c4affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 02b63f3bc29265bd9e83191792d200ed563acacfaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5588b7c86effffa9bb55383a38800649d7b40778affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < bca11de0a277b8baeb7d006f93b543c907b6e782affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1823e08f76c68b9e1d26f6d5ef831b96f61a62a0affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0c4a13ba88594fd4a27292853e736c6b4349823daffected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux5.10.248 <= 5.10.*unaffected
LinuxLinux5.15.198 <= 5.15.*unaffected
LinuxLinux6.1.160 <= 6.1.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.63 <= 6.12.*unaffected
LinuxLinux6.17.13 <= 6.17.*unaffected
LinuxLinux6.18.2 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References