Lucene search
K

41 matches found

OSV
OSV
added 2025/10/07 3:19 p.m.4 views

CVE-2023-53641 wifi: ath9k: hif_usb: fix memory leak of remain_skbs

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: fix memory leak of remainskbs hifdev-remainskb is allocated and used exclusively in ath9khifusbrxstream. It is implied that an allocated remainskb is processed and subsequently freed in error paths only durin...

5.5CVSS6.4AI score0.00146EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-9424

Malware in sbrugna...

6CVSS7.6AI score0.00386EPSS
Exploits0References13
NVD
NVD
added 2025/08/19 5:15 p.m.5 views

CVE-2025-38604

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Kill URBs before clearing tx status queue In rtl8187stop move the call of usbkillanchoredurbs before clearing btxstatus.queue. This change prevents callbacks from using already freed skb due to anchor was not kille...

5.5CVSS0.00149EPSS
Exploits0References11
OSV
OSV
added 2025/08/19 5:15 p.m.6 views

AZL-66449 CVE-2025-38604 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Kill URBs before clearing tx status queue In rtl8187stop move the call of usbkillanchoredurbs before clearing btxstatus.queue. This change prevents callbacks from using already freed skb due to anchor was not kille...

5.5CVSS5.6AI score0.00149EPSS
Exploits0References1
CVE
CVE
added 2025/08/19 5:3 p.m.49 views

CVE-2025-38604

CVE-2025-38604 affects the Linux kernel RTL8187 family via a race in rtl8187_stop() where usb_kill_anchored_urbs() must be invoked before clearing b_tx_status.queue to avoid callbacks using freed skbs. The upstream fix changes the sequence to kill URBs prior to freeing the tx-status skb, addressi...

5.5CVSS6.7AI score0.00149EPSS
Exploits0References11Affected Software1
Debian CVE
Debian CVE
added 2025/08/19 5:3 p.m.6 views

CVE-2025-38604

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Kill URBs before clearing tx status queue In rtl8187stop move the call of usbkillanchoredurbs before clearing btxstatus.queue. This change prevents callbacks from using already freed skb due to anchor was not kille...

5.5CVSS5.3AI score0.00149EPSS
Exploits0
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from wifi: rtl818x module does not terminate URBs before clearing the tx status queue...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References11
NVD
NVD
added 2025/02/26 7:1 a.m.15 views

CVE-2022-49661

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbopen/close: fix memory leak The gsusb driver appears to suffer from a malady common to many USB CAN adapter drivers in that it performs usballoccoherent to allocate a number of USB request blocks URBs for RX, and...

5.5CVSS0.00253EPSS
Exploits0References8
OSV
OSV
added 2025/02/26 7:1 a.m.3 views

UBUNTU-CVE-2022-49661

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbopen/close: fix memory leak The gsusb driver appears to suffer from a malady common to many USB CAN adapter drivers in that it performs usballoccoherent to allocate a number of USB request blocks URBs for RX, and...

5.5CVSS6.1AI score0.00253EPSS
Exploits0References11
CVE
CVE
added 2025/02/26 2:23 a.m.99 views

CVE-2022-49661

Affected component: Linux kernel, gs_usb driver (USB CAN adapter). Issue: memory leak in gs_usb_open/close where RX URBs allocated with usb_alloc_coherent() were not freed by usb_kill_anchored_urbs() and DMA memory leaked. Root cause: improper freeing pattern; the fix explicitly frees RX URBs and...

5.5CVSS5.4AI score0.00253EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/07/16 1:15 p.m.2 views

DEBIAN-CVE-2022-48857

In the Linux kernel, the following vulnerability has been resolved: NFC: port100: fix use-after-free in port100sendcomplete Syzbot reported UAF in port100sendcomplete. The root case is in missing usbkillurb calls on error handling path of -probe function. port100sendcomplete accesses devm allocat...

5.5CVSS5.7AI score0.00205EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/06/05 10:5 a.m.7 views

kernel: usb: xhci: Add error handling in xhci_map_urb_for_dma

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Add error handling in xhcimapurbfordma The Linux kernel CVE team has assigned CVE-2024-26964 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050130-CVE-2024-26964-54c8@gregkh/T...

5.5CVSS6.8AI score0.00225EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: Linux kernel: Denial of Service in ath9k Wi-Fi driver due to URB memory leak

A flaw was found in the Linux kernel's ath9k Wi-Fi driver. This memory leak vulnerability occurs because Universal Serial Bus USB request blocks URBs are allocated but not properly freed when certain conditions are met during USB device handling. A local attacker could exploit this by triggering...

5.7AI score0.00239EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:49 a.m.6 views

SUSE CVE-2012-0058

The kiocbbatchfree function in fs/aio.c in the Linux kernel before 3.2.2 allows local users to cause a denial of service OOPS via vectors that trigger incorrect iocb management...

5.5CVSS6.2AI score0.00376EPSS
Exploits0References3
Prion
Prion
added 2016/11/04 9:59 p.m.30 views

Cross site request forgery (csrf)

The xhciringfetch function in hw/usb/hcd-xhci.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash by leveraging failure to limit the number of link Transfer Request Blocks TRB to process...

2.1CVSS6.4AI score0.00386EPSS
Exploits0References10Affected Software5
OSV
OSV
added 2016/11/04 9:59 p.m.2 views

ALPINE-CVE-2016-8576

The xhciringfetch function in hw/usb/hcd-xhci.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash by leveraging failure to limit the number of link Transfer Request Blocks TRB to process...

6CVSS6.4AI score0.00386EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2016/11/04 9:0 p.m.122 views

CVE-2016-8576

The xhciringfetch function in hw/usb/hcd-xhci.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop and QEMU process crash by leveraging failure to limit the number of link Transfer Request Blocks TRB to process...

6CVSS6.4AI score0.00386EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2015/03/03 12:49 p.m.3 views

Kernel: USB serial: memory corruption flaw

A memory corruption flaw was found in the way the USB ConnectTech WhiteHEAT serial driver processed completion commands sent via USB Request Blocks buffers. An attacker with physical access to the system could use this flaw to crash the system or, potentially, escalate their privileges on the...

6.9CVSS6.7AI score0.00596EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.265 views

RHEL 6 : kernel (RHSA-2014:1843)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1843 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. A race condition flaw was found in the way the Linux...

6.9CVSS6.3AI score0.00596EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2014/11/11 3:34 p.m.66 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

6.9CVSS6.5AI score0.00596EPSS
Exploits0References5
Rows per page
Query Builder