A vulnerability identified as problematic has been detected in alsa-project alsa-lib . Impacted is the function parse_def of the file src/conf.c . The manipulation leads to double free. This vulnerability is listed as CVE-2026-56109 . The attack must be carried out locally. There is no available exploit. You should upgrade the affected component.