Heap Out-of-Bounds Write Vulnerability in QEMU Virtio-snd Device
CVE-2026-3195

7.4HIGH

Key Information:

Status: Red Hat Enterprise Linux 10; Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7
Vendor: CVE Published:; 19 June 2026

What is CVE-2026-3195?

A vulnerability exists in the QEMU virtio-snd device due to inadequate validation of input audio data buffers in the virtio_snd_pcm_in_cb function. This oversight allows for potential heap out-of-bounds writes, which can lead to significant security risks, especially when dealing with user-supplied audio input. This flaw stems from an incomplete resolution associated with a previously reported issue, making it critical for users of affected QEMU versions to apply the necessary updates and patches to mitigate these risks.

References

https://access.redhat.com/security/cve/CVE-2026-3195

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2443817

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

7.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2026
Vulnerability Reserved
Feb 25, 2026

Credit

Red Hat would like to thank DARKNAVY (DarkNavyOrg) and Mingyuan Luo for reporting this issue.

CVE-2026-3195 Data

JSON