Description
Multiple unbounded alloca() calls in the PulseAudio protocol server.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
Vendor Workaround
No practical mitigation beyond upgrading. The PulseAudio protocol server is a core module required for PulseAudio application compatibility.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Wed, 01 Jul 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Multiple unbounded alloca() calls in the PulseAudio protocol server. | |
| Title | Pipewire: pulse server alloca stack overflow | |
| First Time appeared |
Redhat
Redhat enterprise Linux |
|
| Weaknesses | CWE-770 | |
| CPEs | cpe:/o:redhat:enterprise_linux:10 cpe:/o:redhat:enterprise_linux:8 cpe:/o:redhat:enterprise_linux:9 |
|
| Vendors & Products |
Redhat
Redhat enterprise Linux |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2026-07-01T14:09:25.189Z
Reserved: 2026-07-01T12:29:58.653Z
Link: CVE-2026-14330
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses