CVE-2025-38249 | Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3 ALSA snd_usb_get_audioformat_uac3 out-of-bounds

SecurityVulns
Yanac

A vulnerability classified as problematic has been found in Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3. This affects the function snd_usb_get_audioformat_uac3 of the component ALSA. The manipulation leads to out-of-bounds read.

This vulnerability is uniquely identified as CVE-2025-38249. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More