CVE-2025-39751

In the Linux kernel, the following vulnerability has been resolved:

ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control

The 'sprintf' call in 'add_tuning_control' may exceed the 44-byte
buffer if either string argument is too long. This triggers a compiler
warning.
Replaced 'sprintf' with 'snprintf' to limit string lengths to prevent
overflow.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
vulnerable
bullseye (security)
vulnerable
bookworm
vulnerable
bookworm (security)
vulnerable
trixie
6.12.43-1
fixed
trixie (security)
vulnerable
forky
6.16.3-1
fixed
sid
6.16.6-1
fixed
References
https://git.kernel.org/stable/c/04fa6f5e94034654da3505d9e908dd9090f0e83c
https://git.kernel.org/stable/c/0de69bc9b3661e16c4b08b34949529553906f5e1
https://git.kernel.org/stable/c/195e4cec1007c34ddeb0ce61ef14ce9ab312544f
https://git.kernel.org/stable/c/417407cdf587e3ae41a0e728daa562ee88fc1bd6
https://git.kernel.org/stable/c/86a024a5a521da362fb67a3a6a84f54331503326
https://git.kernel.org/stable/c/a409c60111e6bb98fcabab2aeaa069daa9434ca0
https://git.kernel.org/stable/c/c2dacfe495b72699a9480c95f8eef2285042e474
https://git.kernel.org/stable/c/cf494138b9d7f78bcb510b9ea5f5faa6e882a7a3
https://git.kernel.org/stable/c/fb8116c38d67d6e23f3b5e34bbc8d9f8c12e81e5