Lucene search
K

335 matches found

RedhatCVE
RedhatCVE
added last week5 views

CVE-2026-53073

A flaw was found in the Linux kernel's Bluetooth Host Controller Interface HCI Universal Asynchronous Receiver/Transmitter UART driver. When the hciregisterdev function fails, a flag indicating protocol initialization is not properly cleared. This oversight allows incoming UART data to be process...

7CVSS5.7AI score0.00172EPSS
Exploits0References4
CVE
CVE
added last week13 views

CVE-2026-53195

In the Linux kernel USB serial driver io_ti, CVE-2026-53195 describes a heap-overflow in build_i2c_fw_hdr(). The function allocates a fixed buffer ((16*1024 - 512) + sizeof(struct ti_i2c_firmware_rec)) and then copies img_header->Length bytes without validating that Length fits into the remain...

6AI score0.00203EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect currxfer in tegraqspicombinedseqxfer The currxfer field is read by the IRQ handler without holding a lock. This allows the IRQ handler to check whether a transfer is in progress. When clearing the...

5.5CVSS5.7AI score0.00111EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types. However, for RSCI, the “overrunreg” is specified as a memory offset. For other SCIF types, ...

5.7AI score0.00155EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/panel/panel-sitronix-st7701: Remove the panel when DSI attachment fails. In the event that mipidsiattach fails, call drmpanelremove to avoid a memory leak...

5.9AI score0.00211EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: Unregister wiphy only if it has been registered There is a specific error path in probe functions in wilc drivers both sdio and spi, which can lead to kernel panic. For example, this issue occurs when using SPI:...

5.5CVSS5.3AI score0.00159EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: spi: imx: Do not skip cleanup in the error path of the remove function Returning early in the remove callback of a platform driver is incorrect. In this case, the DMA resources are not released during the error path. This issue i...

5.5CVSS5.3AI score0.00152EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.21 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Staging: greybus: uart: fixed the issue where tty was used after it was freed. The user space can keep a tty open indefinitely, and tty drivers must not release the underlying structures until the last user has left. We have...

7.8CVSS5.7AI score0.00242EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: serial: mctrlgpio: The disablems function has been split into sync and nosync APIs. The following issue was observed on the SAMA5D27 platform using the atmelserial: BUG: A sleeping function was called from an invalid context at...

5.5CVSS6.1AI score0.00156EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/12 6:24 p.m.13 views

EUVD-2026-36538

During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated WPA keys in cleartext to an exposed UART console on production hardware. The UART pads are labeled, run with default serial settings, and drop to an interactive RT-Thread shell that permits...

5.1CVSS5.3AI score0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/09 12:25 p.m.27 views

CVE-2026-46326 iio: pressure: mprls0025pa: fix spi_transfer struct initialisation

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spitransfer struct initialisation Make sure that the spitransfer struct is zeroed out before use...

8.4CVSS0.00132EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.9 views

CVE-2025-4386

Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal.​...

6.8CVSS5.4AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2026/06/05 3:54 a.m.7 views

MINI-R232-QJ48-CMC3

Bulletin has no description...

6.5CVSS5.7AI score0.00196EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/04 2:40 p.m.12 views

CVE-2026-46261

A flaw was found in the Linux kernel. A null pointer dereference in the wpcm-fiu Serial Peripheral Interface SPI driver, specifically when platformgetresourcebyname returns a null value, could lead to a system crash. This vulnerability could allow a local attacker to cause a Denial of Service DoS...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/04 12:0 a.m.13 views

EUVD-2026-34277

GNCC GP5 v7.1.76 was discovered to store sensitive wireless network information in plaintext during routine operations to the serial console. This issue allows physically-proximate attackers to obtain sensitive information, including network credentials, via monitoring the serial UART interface...

5.8AI score0.00156EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:5 a.m.7 views

spi: rspi: fix controller deregistration

...

7.1CVSS5.4AI score0.00119EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:16 a.m.16 views

SUSE CVE-2026-46148

In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select, which is automagically operated by the hardware - set low when the transmit buffer first gets written to and set high when...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 10:16 a.m.17 views

CVE-2026-46226

In the Linux kernel, the following vulnerability has been resolved: spi: fsl: fix controller deregistration Make sure to deregister the controller before releasing underlying resources like DMA during driver unbind...

5.5CVSS0.00119EPSS
Exploits0References5
OSV
OSV
added 2026/05/28 10:16 a.m.5 views

UBUNTU-CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/28 9:41 a.m.12 views

CVE-2026-46241

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on registration failure Make sure to disable and free the interrupts in case controller registration fails to avoid a potential use-after-free and resource leak. This issue was flagged by Sashiko...

7.8CVSS5.7AI score0.00125EPSS
Exploits0
Rows per page
Query Builder