Linux Kernel ALSA Context Free SPDIF1 Index Handling Vulnerability

A vulnerability in the Linux kernel's ALSA subsystem for the Creative Sound Blaster Audigy 2 (ctxfi) driver has been addressed. The issue arose because the SPDIF1 Digital Audio Input/Output (DAIO) type was not correctly processed for the hardware version 20k2. This oversight led to an invalid error code being returned, which caused an out-of-bounds array access. The fix involves aligning the handling of SPDIF1 with the established pattern for another hardware version, ensuring the correct index is returned.

Impact

The vulnerability could lead to out-of-bounds array access, which may cause memory corruption or other unintended behavior.

Reproduction

The vulnerability can be reproduced by using the ALSA subsystem with the Creative Sound Blaster Audigy 2 driver on a system running the affected version of the Linux kernel. When the SPDIF1 DAIO type is requested for the hardware version 20k2, the driver will incorrectly return an error, causing an out-of-bounds access in the array handling.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the official Linux kernel website.