Double-Free Vulnerability in Advanced Linux Sound Architecture Library Affecting ALSA Users
CVE-2026-56109

7HIGH

Key Information:

Vendor

Alsa-project

Status
Alsa-lib
Vendor
CVE Published:
22 June 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2026-56109?

The Advanced Linux Sound Architecture (ALSA) library prior to version 1.2.16.1 is susceptible to a double-free vulnerability located in the parse_def() function within src/conf.c. This vulnerability enables attackers to manipulate memory by providing specially crafted ALSA configuration files. During the processing of nested compound or array configuration blocks, the function fails to validate return values adequately, leading to a scenario where the snd_config_delete() function may attempt to delete the same node multiple times, resulting in potential NULL-pointer dereferences or reading from invalid memory locations.

Affected Version(s)

alsa-lib 0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2026-56109 - Proof of Concept

References

https://lore.kernel.org/alsa-devel/CAGt8pqBU0p2voB+qHxWGc...
technical-descriptionexploit
https://github.com/alsa-project/alsa-lib/releases/tag/v1....
release-notes
https://github.com/alsa-project/alsa-lib/commit/536dd6f8a...
patch

CVSS V4

Score:
7
Severity:
HIGH
Confidentiality:
None
Integrity:
Low
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Dmitrijs Trizna of Aisle Research
Luigino Camastra of Aisle Research
Guido Vranken of Aisle Research
Ze Sheng of Aisle Research
.