Lucene search
K

854 matches found

OSV
OSV
added 2024/05/21 3:15 p.m.1 views

DEBIAN-CVE-2021-47272

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...

5.5CVSS5.1AI score0.00222EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:15 p.m.3 views

UBUNTU-CVE-2021-47372

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use after free on rmmod platdev-dev-platformdata is released by platformdeviceunregister, use of pclk and hclk is a use-after-free. Since device unregister won't need a clk device we adjust the function call sequen...

7.8CVSS6.2AI score0.00242EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/05/21 2:20 p.m.19 views

CVE-2021-47272 usb: dwc3: gadget: Bail from dwc3_gadget_exit() if dwc->gadget is NULL

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...

6.3AI score0.00222EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/21 2:0 a.m.2 views

SUSE CVE-2024-35809

In the Linux kernel, the following vulnerability has been resolved: PCI/PM: Drain runtime-idle callbacks before driver removal A race condition between the .runtimeidle callback and the .remove callback in the rtsxpcr PCI driver leads to a kernel crash due to an unhandled page fault 1. The proble...

4.7CVSS6.4AI score0.00193EPSS
Exploits0References20
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a vulnerability in the spi module...

4.7CVSS6.4AI score0.00181EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/21 12:0 a.m.3 views

PT-2024-11277 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A possible scenario exists where dwc3 gadget init can fail during a host to peripheral mode switch in dwc3 set mode, and a pending gadget driver fails to bind. If the DRD undergoes...

5.5CVSS4.4AI score0.00222EPSS
Exploits0References13
OSV
OSV
added 2024/05/17 2:15 p.m.1 views

DEBIAN-CVE-2024-35809

In the Linux kernel, the following vulnerability has been resolved: PCI/PM: Drain runtime-idle callbacks before driver removal A race condition between the .runtimeidle callback and the .remove callback in the rtsxpcr PCI driver leads to a kernel crash due to an unhandled page fault 1. The proble...

4.7CVSS5.5AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/17 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from passing an incorrect uninitialized acpiparent to acpigetpcidev for detection of the parent pci device...

5.5CVSS6.4AI score0.00258EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2024/05/07 2:49 a.m.2 views

SUSE CVE-2022-48696

In the Linux kernel, the following vulnerability has been resolved: regmap: spi: Reserve space for register address/padding Currently the maxrawread and maxrawwrite limits in regmapspi struct do not take into account the additional size of the transmitted register address and padding. This may...

5.5CVSS6.3AI score0.00194EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.1 views

SUSE CVE-2024-27028

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mt65xx: Fix NULL pointer access in interrupt handler The TX buffer in spitransfer can be a NULL pointer, so the interrupt handler may end up writing to the invalid memory and cause crashes. Add a check to trans-txbuf...

5.5CVSS6.7AI score0.01176EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.3 views

kernel: hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()

A counting logic flaw exists in the Linux kernel. When cigetdomainbusandslot is called, it returns a pci device with refcount incremented. When finishing it, the caller must decrement the reference count by calling pcidevput, leading to the loss of confidentiality of the system...

5.5CVSS6.9AI score0.00235EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/04/19 12:0 a.m.6 views

PT-2024-5604 · Dell · Dell Peripheral Manager

Name of the Vulnerable Software and Affected Versions: Dell Peripheral Manager versions prior to 1.7.6 Description: The issue is related to an uncontrolled search path element in the software. This could allow an attacker to potentially exploit the vulnerability through preloading malicious DLL o...

7.8CVSS8.2AI score0.00199EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.4 views

PT-2024-3511 · Amd · Amdpspp2Cmboxv2

Name of the Vulnerable Software and Affected Versions: AmdPspP2CmboxV2 affected versions not specified Description: The issue is related to an exposed SMI handler in AmdPspP2CmboxV2, which can be leveraged to bypass protections put in place by previous UEFI phases, allowing direct access to the S...

7.8CVSS7.8AI score0.00115EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/15 11:20 p.m.2 views

SUSE CVE-2021-47195

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the addlock mutex Commit 6098475d4cb4 "spi: Fix deadlock when adding SPI controllers on SPI buses" introduced a per-controller mutex. But mutexunlock of said lock is called after the controller is alrea...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/04/11 2:31 a.m.3 views

SUSE CVE-2024-26738

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: DLPAR add doesn't completely initialize pcicontroller When a PCI device is dynamically added, the kernel oopses with a NULL pointer dereference: BUG: Kernel NULL pointer dereference on read at 0x00000030...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/04/11 2:30 a.m.5 views

SUSE CVE-2024-27437

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Disable auto-enable of exclusive INTx IRQ Currently for devices requiring masking at the irqchip for INTx, ie. devices without DisINTx support, the IRQ is enabled in requestirq and subsequently disabled as necessary to...

4.4CVSS6.4AI score0.0024EPSS
Exploits0References16
ATTACKERKB
ATTACKERKB
added 2024/04/10 7:15 p.m.5 views

CVE-2021-47195

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the addlock mutex Commit 6098475d4cb4 "spi: Fix deadlock when adding SPI controllers on SPI buses" introduced a per-controller mutex. But mutexunlock of said lock is called after the controller is alrea...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/03/25 9:15 a.m.1 views

UBUNTU-CVE-2021-47147

In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: Fix a resource leak in an error handling path If an error occurs after a successful 'pciioremapbar' call, it must be undone by a corresponding 'pciiounmap' call, as already done in the remove function...

6.2CVSS5.9AI score0.00202EPSS
Exploits0References4
OSV
OSV
added 2024/03/20 11:15 a.m.4 views

ALPINE-CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.3CVSS6.9AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2024/03/20 11:15 a.m.5 views

UBUNTU-CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.3CVSS5.8AI score0.00805EPSS
Exploits0References3
Rows per page
Query Builder