Lucene search
+L

100 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-54973

Malicious code in bioql PyPI...

5.5CVSS6AI score0.00259EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/10/01 5:47 p.m.18 views

kernel: ALSA: usb-audio: ALSA USB Audio Out-of-Bounds Bug

A flaw was found in the Linux kernel ALSA USB audio driver. This vulnerability allows a denial of service via a crafted USB audio device...

7.1CVSS7.2AI score0.00238EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/17 2:56 p.m.10 views

CVE-2023-53336 media: ipu-bridge: Fix null pointer deref on SSDB/PLD parsing warnings

In the Linux kernel, the following vulnerability has been resolved: media: ipu-bridge: Fix null pointer deref on SSDB/PLD parsing warnings When ipubridgeparserotation and ipubridgeparseorientation run sensor-adev is not set yet. So if either of the devwarn calls about unknown values are hit this...

0.00187EPSS
Exploits0References3
CVE
CVE
added 2025/09/04 3:33 p.m.34 views

CVE-2025-38729

CVE-2025-38729 relates to the Linux kernel ALSA USB-audio driver and a validation issue with UAC3 power domain descriptors. The root cause is insufficient verification of the descriptor length (bLength), which could allow out-of-bounds accesses via malicious firmware. The vulnerability affects th...

7.8CVSS5.9AI score0.00175EPSS
Exploits0References12Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.7 views

The vulnerability of the usb6fire_chip_abort() function in the sound/usb/6fire/chip.c module allows a hacker to trigger a service failure for USB audio devices in Linux operating systems.

The vulnerability of the usb6firechipabort function in the sound/usb/6fire/chip.c module, which supports USB audio devices in Linux operating systems, is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6.5AI score0.00281EPSS
Exploits0References25Affected Software3
CVE
CVE
added 2025/06/18 11:2 a.m.76 views

CVE-2022-50123

CVE-2022-50123 affects the Linux kernel ASoC Mediatek mt8173 stack (mt8173_rt5650_rt5676_dev_probe). Root cause: of_parse_phandle() returns a node pointer with an incremented refcount and missing of_node_put() in error paths, leading to a potential refcount leak. The connected advisories document...

5.5CVSS6.5AI score0.0016EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 10:26 a.m.12 views

CVE-2019-10581

NULL is assigned to local instance of audio device pointer after free instead of global static pointer and can lead to use after free issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053...

10CVSS7.1AI score0.01141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:52 p.m.9 views

CVE-2005-2134

The 1 clcs and 2 emuxki drivers in NetBSD 1.6 through 2.0.2 allow local users to cause a denial of service kernel crash by using the set-parameters ioctl on an audio device to change the block size and set the pause state to "unpaused" in the same ioctl, which causes a divide-by-zero error...

2.1CVSS6.6AI score0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/02 12:0 a.m.5 views

Digigram PYKO-OUT 安全漏洞

Digigram PYKO-OUT is a professional-grade, multi-channel IP audio encoder from Digigram for high-quality AoIP Audio over IP transmission in broadcast and live production environments. A security vulnerability exists in the Digigram PYKO-OUT, which stems from the fact that no password is required ...

9.8CVSS8.8AI score0.00522EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2025/03/11 7:0 a.m.328 views

February 11, 2025—KB5052006 (OS Build 14393.7785)

None None...

8.8CVSS6.8AI score0.23168EPSS
Exploits2
Microsoft KB
Microsoft KB
added 2025/03/11 7:0 a.m.371 views

February 11, 2025—KB5052000 (OS Build 17763.6893) - EXPIRED

None None...

8.8CVSS6.8AI score0.23168EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2025/03/10 3:32 a.m.35 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.3AI score0.03558EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-48701

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: usb-audio: Fix an out-of-bounds bug in sndusbparseaudiointerface There may be a bad USB audio device with a USB ID of 0x04fa, 0x4201 and the number of it'...

7.1CVSS6AI score0.00238EPSS
Exploits0References3
CVE
CVE
added 2025/02/26 1:56 a.m.133 views

CVE-2022-49253

CVE-2022-49253 affects the Linux kernel in the media: usb: go7007: s2250-board path, where a leak is fixed by calling i2c_unregister_device(audio) on the error path during probe. Connected sources (SUSE Astra Linux advisories) confirm the fix is in this area. The CVE description in the initial do...

5.5CVSS5.4AI score0.00259EPSS
Exploits0References9Affected Software1
Microsoft KB
Microsoft KB
added 2025/02/11 8:0 a.m.52 views

February 11, 2025—KB5052032 (Security-only update)

None None...

8.8CVSS6.8AI score0.08932EPSS
Exploits0
OSV
OSV
added 2024/12/27 2:15 p.m.2 views

DEBIAN-CVE-2024-53197

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices A bogus device can provide a bNumConfigurations value that exceeds the initial value used in usbgetconfiguration for allocating dev-config. This can...

7.8CVSS6.2AI score0.03558EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/06 12:0 a.m.52 views

Ubuntu 20.04 LTS / 22.04 LTS : QEMU regression (USN-6567-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6567-2 advisory. USN-6567-1 fixed vulnerabilities QEMU. The fix for CVE-2023-2861 was too restrictive and introduced a behaviour change leading to a regression in...

7.1CVSS6.3AI score0.00376EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/17 1:15 p.m.24 views

CVE-2024-27436

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Stop parsing channels bits when all channels are found. If a usb audio device sets more bits than the amount of channels it could write outside of the map array...

5.5CVSS6.4AI score0.00622EPSS
Exploits0References34
RedhatCVE
RedhatCVE
added 2024/05/03 9:28 p.m.24 views

CVE-2022-48701

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix an out-of-bounds bug in sndusbparseaudiointerface There may be a bad USB audio device with a USB ID of 0x04fa, 0x4201 and the number of it's interfaces less than 4, an out-of-bounds read bug occurs when parsi...

5.5CVSS6.9AI score0.00238EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/05/03 3:12 p.m.34 views

CVE-2022-48701

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix an out-of-bounds bug in sndusbparseaudiointerface There may be a bad USB audio device with a USB ID of 0x04fa, 0x4201 and the number of it's interfaces less than 4, an out-of-bounds read bug occurs when parsi...

7.1CVSS7.2AI score0.00238EPSS
Exploits0
Rows per page
Query Builder