Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

Ubuntu 25.10 alsa-lib Important DoS Vulnerability USN-8044-1 CVE-2026-25068

ubuntu
Calendar Grey February 16, 2026
Dist Ubuntu Esm H88
Address alsa-lib issue in Ubuntu 25.10, 24.04 LTS, and 22.04 LTS causing potential crash and DoS.
alsa-lib could be made to crash or run programs if it opened a specially crafted file.

Summary

alsa-lib could be made to crash or run programs if it opened a specially

crafted file.

Software Description:

- alsa-lib: shared library for ALSA applications

Details:

It was discovered that alsa-lib incorrectly handled the topology mixer

control decoder. A local attacker could use a specially crafted topology

file to cause alsa-lib to crash, resulting in a denial of service, or

possibly execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  libasound2t64                   1.2.14-1ubuntu1.1

Ubuntu 24.04 LTS
  libasound2t64                   1.2.11-1ubuntu0.2

Ubuntu 22.04 LTS
  libasound2                      1.2.6.1-1ubuntu1.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8044-1

CVE-2026-25068

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8044-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here