474 matches found
CVE-2026-43340
In the Linux kernel, the following vulnerability has been resolved: comedi: Reinit dev-spinlock between attachments to low-level drivers struct comedidevice is the main controlling structure for a COMEDI device created by the COMEDI subsystem. It contains a member spinlock containing a spin-lock...
CVE-2026-43340
Summary (CVE-2026-43340): The Linux kernel COMEDI subsystem contains a spinlock (dev->spinlock) in struct comedi_device that can be reinitialized when a COMEDI device is reattached to different low-level drivers via COMEDI_DEVCONFIG. This race can occur if multiple drivers with different lockd...
SUSE CVE-2026-31749
In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the COMEDI device does not reinitialize dev-spinlock when reattaching different underlyin...
PT-2026-38991
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the COMEDI subsystem, the struct comedi device contains a spinlock member intended for use by low-level drivers. Certain COMEDI devices can be attached to different low-level drivers...
Linux Distros Unpatched Vulnerability : CVE-2026-43340
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: Reinit dev-spinlock between attachments to low-level drivers struct comedidevice is the main controlling structure for a COMEDI device created by the...
SUSE CVE-2026-31747
In the Linux kernel, the following vulnerability has been resolved: comedi: me4000: Fix potential overrun of firmware buffer me4000xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format...
SUSE CVE-2026-31748
In the Linux kernel, the following vulnerability has been resolved: comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format. ...
SUSE CVE-2026-31750
In the Linux kernel, the following vulnerability has been resolved: comedi: runflags cannot determine whether to reclaim chanlist syzbot reported a memory leak 1, because commit 4e1da516debb "comedi: Add reference counting for Comedi command handling" did not consider the exceptional exit case in...
SUSE CVE-2026-31751
In the Linux kernel, the following vulnerability has been resolved: comedi: dt2815: add hardware detection to prevent crash The dt2815 driver crashes when attached to I/O ports without actual hardware present. This occurs because syzkaller or users can attach the driver to arbitrary I/O addresses...
Linux Distros Unpatched Vulnerability : CVE-2026-31750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: comedi: runflags cannot determine whether to reclaim chanlist syzbot reported a memory leak ...
Linux Distros Unpatched Vulnerability : CVE-2026-31748
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to...
Linux Distros Unpatched Vulnerability : CVE-2026-31751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: dt2815: add hardware detection to prevent crash The dt2815 driver crashes when attached to I/O ports without actual hardware present. This occurs becaus...
Linux Distros Unpatched Vulnerability : CVE-2026-31749
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI attach handler function atmio16dattach returns an error, the COMEDI core wil...
Linux Distros Unpatched Vulnerability : CVE-2026-31747
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: me4000: Fix potential overrun of firmware buffer me4000xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to...
CVE-2026-31751
A flaw was found in the Linux kernel's comedi dt2815 driver. A local user can exploit this vulnerability by attaching the driver to arbitrary I/O addresses without actual hardware present. This can trigger a page fault during output operations on non-existent hardware, leading to a kernel crash...
CVE-2026-31749
A flaw was found in the niatmio16d driver within the Comedi Comedi is a collection of drivers for data acquisition equipment subsystem of the Linux kernel. This vulnerability occurs when an error during the driver's attach process causes the cleanup function atmio16ddetach to be called with...
CVE-2026-31750
A flaw was found in the Linux kernel's comedi driver. An exceptional exit case in the docmdioctl function, where a runflags variable is not properly set, prevents the chanlist memory from being freed. This memory leak can lead to a denial of service DoS condition, potentially impacting system...
CVE-2026-31748
A flaw was found in the Linux kernel's comedi: medaq module. The me2600xilinxdownload function, responsible for loading firmware, does not adequately validate the length of the provided firmware data stream. This vulnerability allows for a buffer overrun, which can lead to memory corruption withi...
CVE-2026-31747
A flaw was found in the Linux kernel's comedi: me4000 driver. The me4000xilinxdownload function fails to validate the length of the firmware data stream, trusting the value provided in the firmware header. A local attacker could exploit this by providing a specially crafted firmware image, leadin...