Version in base suite: 1.2.14-1

Base version: alsa-lib_1.2.14-1
Target version: alsa-lib_1.2.14-1+deb13u1
Base file: /srv/ftp-master.debian.org/ftp/pool/main/a/alsa-lib/alsa-lib_1.2.14-1.dsc
Target file: /srv/ftp-master.debian.org/policy/pool/main/a/alsa-lib/alsa-lib_1.2.14-1+deb13u1.dsc

 changelog                    |    6 ++++++
 patches/CVE-2026-25068.patch |   20 ++++++++++++++++++++
 patches/series               |    1 +
 3 files changed, 27 insertions(+)

dpkg-source: warning: cannot verify inline signature for /srv/release.debian.org/tmp/tmp94790tpd/alsa-lib_1.2.14-1.dsc: no acceptable signature found
dpkg-source: warning: cannot verify inline signature for /srv/release.debian.org/tmp/tmp94790tpd/alsa-lib_1.2.14-1+deb13u1.dsc: no acceptable signature found
diff: /srv/release.debian.org/tmp/RX1e6zluSU/alsa-lib-1.2.14/include/alsa: recursive directory loop
diff -Nru alsa-lib-1.2.14/debian/changelog alsa-lib-1.2.14/debian/changelog
--- alsa-lib-1.2.14/debian/changelog	2025-04-14 18:26:22.000000000 +0000
+++ alsa-lib-1.2.14/debian/changelog	2026-06-19 18:17:25.000000000 +0000
@@ -1,3 +1,9 @@
+alsa-lib (1.2.14-1+deb13u1) trixie; urgency=medium
+
+  * CVE-2026-25068 (Closes: #1126629)
+
+ -- Moritz Mühlenhoff <jmm@debian.org>  Fri, 19 Jun 2026 20:17:25 +0200
+
 alsa-lib (1.2.14-1) unstable; urgency=medium
 
   * New upstream release.
diff -Nru alsa-lib-1.2.14/debian/patches/CVE-2026-25068.patch alsa-lib-1.2.14/debian/patches/CVE-2026-25068.patch
--- alsa-lib-1.2.14/debian/patches/CVE-2026-25068.patch	1970-01-01 00:00:00.000000000 +0000
+++ alsa-lib-1.2.14/debian/patches/CVE-2026-25068.patch	2026-06-19 18:17:25.000000000 +0000
@@ -0,0 +1,20 @@
+From 5f7fe33002d2d98d84f72e381ec2cccc0d5d3d40 Mon Sep 17 00:00:00 2001
+From: Jaroslav Kysela <perex@perex.cz>
+Date: Thu, 29 Jan 2026 16:51:09 +0100
+Subject: [PATCH] topology: decoder - add boundary check for channel mixer
+ count
+
+--- alsa-lib-1.2.14.orig/src/topology/ctl.c
++++ alsa-lib-1.2.14/src/topology/ctl.c
+@@ -1247,6 +1247,11 @@ int tplg_decode_control_mixer1(snd_tplg_
+ 	if (mc->num_channels > 0) {
+ 		map = tplg_calloc(heap, sizeof(*map));
+ 		map->num_channels = mc->num_channels;
++		if (map->num_channels > SND_TPLG_MAX_CHAN ||
++		    map->num_channels > SND_SOC_TPLG_MAX_CHAN) {
++			SNDERR("mixer: unexpected channel count %d", map->num_channels);
++			return -EINVAL;
++		}
+ 		for (i = 0; i < map->num_channels; i++) {
+ 			map->channel[i].reg = mc->channel[i].reg;
+ 			map->channel[i].shift = mc->channel[i].shift;
diff -Nru alsa-lib-1.2.14/debian/patches/series alsa-lib-1.2.14/debian/patches/series
--- alsa-lib-1.2.14/debian/patches/series	2024-02-09 20:18:05.000000000 +0000
+++ alsa-lib-1.2.14/debian/patches/series	2026-06-19 18:17:25.000000000 +0000
@@ -1 +1,2 @@
 0001-Enabled-extended-namehints-in-alsa.conf.patch
+CVE-2026-25068.patch