Lucene search
K

15 matches found

CVE
CVE
added 2025/12/30 12:15 p.m.14 views

CVE-2023-54249

The CVE concerns the Linux kernel component bus: mhi: ep. The issue arises when handling STOP and RESET commands: the system may send a -ENOTCONN status even if the client driver is not available, which could lead to a null pointer dereference. The available connected sources confirm this is a ke...

6.2AI score0.00166EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.4 views

PT-2025-54078

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: Only send -ENOTCONN status if client driver is available For the STOP and RESET commands, only send the channel disconnect status -ENOTCONN if client driver is available. Otherwise, it will result in null pointer...

6.5AI score0.00166EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: The read pointer is updated only after the buffer has been written. Within mhiepringaddelement, the read pointer rdoffset is updated before the buffer is written. This may lead to race conditions, where the host see...

5.5CVSS6.1AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/22 3:31 p.m.3 views

EUVD-2023-60010

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not swap cpubuffer during resize process When ringbufferswapcpu was called during resize process, the cpu buffer was swapped in the middle, resulting in incorrect state. Continuing to run in the wrong state will...

4.9AI score0.00183EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a premature update of the read pointer by the mhi ep bus module, which could lead to data corruption...

5.5CVSS7AI score0.00155EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.8 views

Vulnerability of the mhipciremove() function in the drivers/bus/mhi/pcigeneric.c module – A driver for the MHI bus in the Linux kernel, which allows a hacker to cause a service failure.

Vulnerability of the mhipciremove function in the drivers/bus/mhi/pcigeneric.c module – The MHI driver in the Linux kernel is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

7.8CVSS6AI score0.00219EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/04/01 4:15 p.m.12 views

AZL-59916 CVE-2025-21951 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: pcigeneric: Use pcitryresetfunction to avoid deadlock There are multiple places from where the recovery work gets scheduled asynchronously. Also, there are multiple places where the caller waits synchronously for...

5.5CVSS6.6AI score0.00144EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 3:41 p.m.7 views

CVE-2025-21951 bus: mhi: host: pci_generic: Use pci_try_reset_function() to avoid deadlock

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: pcigeneric: Use pcitryresetfunction to avoid deadlock There are multiple places from where the recovery work gets scheduled asynchronously. Also, there are multiple places where the caller waits synchronously for...

6.4AI score0.00144EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/04/01 3:41 p.m.11 views

CVE-2025-21951

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: pcigeneric: Use pcitryresetfunction to avoid deadlock There are multiple places from where the recovery work gets scheduled asynchronously. Also, there are multiple places where the caller waits synchronously for...

5.5CVSS5.6AI score0.00144EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/03/18 12:0 a.m.8 views

Vulnerability of the mhi_queue() function in the drivers/bus/mhi/core/main.c module – The MHI bus driver in the Linux kernel allows a hacker to cause a service failure.

Vulnerability of the mhiqueue function in the drivers/bus/mhi/core/main.c module – The MHI driver in the Linux kernel is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6.2AI score0.00216EPSS
Exploits0References9Affected Software2
SUSE CVE
SUSE CVE
added 2024/05/23 3:5 a.m.2 views

SUSE CVE-2021-47286

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: core: Validate channel ID when processing command completions MHI reads the channel ID from the event ring element sent by the device which can be any value between 0 and 255. In order to prevent any out of bound...

7.8CVSS6.6AI score0.00231EPSS
Exploits0References3
CVE
CVE
added 2024/05/21 2:34 p.m.67 views

CVE-2021-47286

CVE-2021-47286 affects the Linux kernel MHI bus core. The issue arises when processing command completions: the channel ID read from the device event ring can be any value 0–255, risking out-of-bounds accesses. The fix adds a bounds check against the controller’s maximum channels and against chan...

7.8CVSS6.8AI score0.00231EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/05/21 2:34 p.m.14 views

CVE-2021-47286

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: core: Validate channel ID when processing command completions MHI reads the channel ID from the event ring element sent by the device which can be any value between 0 and 255. In order to prevent any out of bound...

7.8CVSS4.7AI score0.00231EPSS
Exploits0
OSV
OSV
added 2024/02/27 7:4 p.m.2 views

CVE-2021-46970

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: pcigeneric: Remove WQMEMRECLAIM flag from state workqueue A recent change created a dedicated workqueue for the state-change work with WQHIGHPRI no strong reason for that and WQMEMRECLAIM flags, but the state-change wor...

5.5CVSS5.6AI score0.00222EPSS
Exploits0References3
Prion
Prion
added 2024/02/27 7:4 p.m.15 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: core: Fix invalid error returning in mhiqueue mhiqueue returns an error when the doorbell is not accessible in the current state. This can happen when the device is in non M0 state, like M3, and needs to be waken-up pri...

7.1AI score0.00216EPSS
Exploits0References2
Rows per page
Query Builder