Lucene search
+L

474 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/08 1:37 p.m.8 views

CVE-2026-43340

In the Linux kernel, the following vulnerability has been resolved: comedi: Reinit dev-spinlock between attachments to low-level drivers struct comedidevice is the main controlling structure for a COMEDI device created by the COMEDI subsystem. It contains a member spinlock containing a spin-lock...

5.7AI score0.00114EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/05/08 1:37 p.m.31 views

CVE-2026-43340

Summary (CVE-2026-43340): The Linux kernel COMEDI subsystem contains a spinlock (dev->spinlock) in struct comedi_device that can be reinitialized when a COMEDI device is reattached to different low-level drivers via COMEDI_DEVCONFIG. This race can occur if multiple drivers with different lockd...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/08 2:22 a.m.17 views

SUSE CVE-2026-31749

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the COMEDI device does not reinitialize dev-spinlock when reattaching different underlyin...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.17 views

PT-2026-38991

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the COMEDI subsystem, the struct comedi device contains a spinlock member intended for use by low-level drivers. Certain COMEDI devices can be attached to different low-level drivers...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: Reinit dev-spinlock between attachments to low-level drivers struct comedidevice is the main controlling structure for a COMEDI device created by the...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/07 2:21 a.m.24 views

SUSE CVE-2026-31747

In the Linux kernel, the following vulnerability has been resolved: comedi: me4000: Fix potential overrun of firmware buffer me4000xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:21 a.m.19 views

SUSE CVE-2026-31748

In the Linux kernel, the following vulnerability has been resolved: comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format. ...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/06 1:43 a.m.15 views

SUSE CVE-2026-31750

In the Linux kernel, the following vulnerability has been resolved: comedi: runflags cannot determine whether to reclaim chanlist syzbot reported a memory leak 1, because commit 4e1da516debb "comedi: Add reference counting for Comedi command handling" did not consider the exceptional exit case in...

5.7AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/06 1:43 a.m.10 views

SUSE CVE-2026-31751

In the Linux kernel, the following vulnerability has been resolved: comedi: dt2815: add hardware detection to prevent crash The dt2815 driver crashes when attached to I/O ports without actual hardware present. This occurs because syzkaller or users can attach the driver to arbitrary I/O addresses...

5.9AI score0.00089EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31750

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: comedi: runflags cannot determine whether to reclaim chanlist syzbot reported a memory leak ...

5.5CVSS5.9AI score0.00107EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31748

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to...

7.8CVSS6.1AI score0.00129EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-31751

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: dt2815: add hardware detection to prevent crash The dt2815 driver crashes when attached to I/O ports without actual hardware present. This occurs becaus...

4.7CVSS6.1AI score0.00089EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-31749

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI attach handler function atmio16dattach returns an error, the COMEDI core wil...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31747

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: me4000: Fix potential overrun of firmware buffer me4000xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to...

7.8CVSS6.1AI score0.00129EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/01 10:9 p.m.6 views

CVE-2026-31751

A flaw was found in the Linux kernel's comedi dt2815 driver. A local user can exploit this vulnerability by attaching the driver to arbitrary I/O addresses without actual hardware present. This can trigger a page fault during output operations on non-existent hardware, leading to a kernel crash...

4.7CVSS5.9AI score0.00089EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 10:8 p.m.8 views

CVE-2026-31749

A flaw was found in the niatmio16d driver within the Comedi Comedi is a collection of drivers for data acquisition equipment subsystem of the Linux kernel. This vulnerability occurs when an error during the driver's attach process causes the cleanup function atmio16ddetach to be called with...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 10:8 p.m.7 views

CVE-2026-31750

A flaw was found in the Linux kernel's comedi driver. An exceptional exit case in the docmdioctl function, where a runflags variable is not properly set, prevents the chanlist memory from being freed. This memory leak can lead to a denial of service DoS condition, potentially impacting system...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 10:4 p.m.8 views

CVE-2026-31748

A flaw was found in the Linux kernel's comedi: medaq module. The me2600xilinxdownload function, responsible for loading firmware, does not adequately validate the length of the provided firmware data stream. This vulnerability allows for a buffer overrun, which can lead to memory corruption withi...

7.8CVSS6AI score0.00129EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 10:4 p.m.5 views

CVE-2026-31747

A flaw was found in the Linux kernel's comedi: me4000 driver. The me4000xilinxdownload function fails to validate the length of the firmware data stream, trusting the value provided in the firmware header. A local attacker could exploit this by providing a specially crafted firmware image, leadin...

7.8CVSS6AI score0.00129EPSS
Exploits0References4
Rows per page
Query Builder