CVE-2021-47231

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: fix memory leak in mcbausb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usbcoherent. In mcbausbstart 20 coherent buffers are allocated and there is...

CVE-2021-47231

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: fix memory leak in mcbausb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usbcoherent. In mcbausbstart 20 coherent buffers are allocated and there is...

CVE-2021-47231

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: fix memory leak in mcbausb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usbcoherent. In mcbausbstart 20 coherent buffers are allocated and there is...

CVE-2021-47231 can: mcba_usb: fix memory leak in mcba_usb

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: fix memory leak in mcbausb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usbcoherent. In mcbausbstart 20 coherent buffers are allocated and there is...

CVE-2021-47231

CVE-2021-47231 describes a memory leak in the Linux kernel SocketCAN driver (mcba_usb). The issue arises in mcba_usb_start() where 20 usb_coherent buffers are allocated but not freed; callbacks resubmit the URB and disconnect handling doesn’t free or mark URB_FREE_BUFFER for coherent buffers. Thi...

CVE-2021-47231

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: fix memory leak in mcbausb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usbcoherent. In mcbausbstart 20 coherent buffers are allocated and there is...

CVE-2021-47231 can: mcba_usb: fix memory leak in mcba_usb

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: fix memory leak in mcbausb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usbcoherent. In mcbausbstart 20 coherent buffers are allocated and there is...

UBUNTU-CVE-2024-35883

In the Linux kernel, the following vulnerability has been resolved: spi: mchp-pci1xxx: Fix a possible null pointer dereference in pci1xxxspiprobe In function pci1xxxxspiprobe, there is a potential null pointer that may be caused by a failed memory allocation by the function devmkzalloc. Hence, a...

CVE-2024-4760

A voltage glitch during the startup of EEFC NVM controllers on Microchip SAM E70/S70/V70/V71, SAM G55, SAM 4C/4S/4N/4E, and SAM 3S/3N/3U microcontrollers allows access to the memory bus via the debug interface even if the security bit is set...

CVE-2024-4760 Voltage glitch during startup of the EEFC NVM controller can bypass the security bit

A voltage glitch during the startup of EEFC NVM controllers on Microchip SAM E70/S70/V70/V71, SAM G55, SAM 4C/4S/4N/4E, and SAM 3S/3N/3U microcontrollers allows access to the memory bus via the debug interface even if the security bit is set...

CVE-2024-4760

The CVE-2024-4760 issue relates to a voltage glitch during the startup of EEFC NVM controllers on Microchip SAM E70/S70/V70/V71, SAM G55, SAM 4C/4S/4N/4E, and SAM 3S/3N/3U microcontrollers that allows access to the memory bus via the debug interface even when the security bit is set. Technical de...

CVE-2024-4760 Voltage glitch during startup of the EEFC NVM controller can bypass the security bit

A voltage glitch during the startup of EEFC NVM controllers on Microchip SAM E70/S70/V70/V71, SAM G55, SAM 4C/4S/4N/4E, and SAM 3S/3N/3U microcontrollers allows access to the memory bus via the debug interface even if the security bit is set...

Microchip SAM 安全漏洞

Microchip SAM is a family of microprocessors and microcontrollers from Microchip Technology USA. A security vulnerability exists in the Microchip SAM family of products, which arises from a voltage spike during controller startup that allows access to the memory bus through the debug interface...

PT-2024-32667

Name of the Vulnerable Software and Affected Versions: Microchip SAM E70/S70/V70/V71 microcontrollers Microchip SAM G55 microcontrollers Microchip SAM 4C/4S/4N/4E microcontrollers Microchip SAM 3S/3N/3U microcontrollers Description: A voltage glitch during the startup of EEFC NVM controllers allo...

CVE-2024-27053

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix RCU usage in connect path With lockdep enabled, calls to the connect function from cfg802.11 layer lead to the following warning: ============================= WARNING: suspicious RCU usage 6.7.0-rc1-wt+ 333 N...

Ubuntu: Security Advisory (USN-6706-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6706-1: Linux kernel (OEM) vulnerability

It was discovered that the Microchip USB Ethernet driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could use this to cause a denial of service system crash...

USN-6706-1 linux-oem-6.1 vulnerability

It was discovered that the Microchip USB Ethernet driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could use this to cause a denial of service system crash...

USN-6626-3: Linux kernel (Azure) vulnerabilities

Quentin Minster discovered that a race condition existed in the KSMBD implementation in the Linux kernel when handling sessions operations. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-32250, CVE-2023-32252, CVE-2023-32257...

USN-6626-3 linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15 vulnerabilities

Quentin Minster discovered that a race condition existed in the KSMBD implementation in the Linux kernel when handling sessions operations. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-32250, CVE-2023-32252, CVE-2023-32257...