CVE-2025-39696
- Source
- https://cve.org/CVERecord?id=CVE-2025-39696
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-39696.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-39696
- Downstream
- Published
- 2025-09-05T17:21:02.068Z
- Modified
- 2026-04-02T12:48:07.310693Z
- Summary
- ALSA: hda: tas2781: Fix wrong reference of tasdevice_priv
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ALSA: hda: tas2781: Fix wrong reference of tasdevice_priv
During the conversion to unify the calibration data management, the reference to tasdevicepriv was wrongly set to h->hdapriv instead of h->priv. This resulted in memory corruption and crashes eventually. Unfortunately it's a void pointer, hence the compiler couldn't know that it's wrong.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39696.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/2812815aa79637d39d4398ecd7e58f65d1c79231
- https://git.kernel.org/stable/c/3f4422e7c9436abf81a00270be7e4d6d3760ec0e
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39696.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-39696
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git