Primary

Context

Linux Kernel ALSA HDA TAS2781 Memory Corruption Vulnerability

Vulnerability

Patched

A memory corruption vulnerability has been identified in the Linux kernel's ALSA HDA TAS2781 component. During a recent update to unify calibration data management, the reference to 'tasdevice_priv' was incorrectly assigned to 'h->hda_priv' instead of 'h->priv'. This misallocation led to memory corruption and subsequent crashes, a situation exacerbated by the fact that the pointer involved was a void pointer, preventing the compiler from detecting the error. The issue has been addressed in the official Linux Git repository.

Impact

The vulnerability caused memory corruption, leading to crashes.

Added: Sep 5, 2025, 7:47 PM

Updated: Sep 5, 2025, 7:47 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ALSA HDA TAS2781 Memory Corruption Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating