Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the amba-pl011 serial driver incorrectly accessing the DMACR register, which could lead to virtual device...

PT-2025-49582

In multiple locations of UsbDataAdvancedProtectionHook.java, there is a possible way to access USB data when the screen is off due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-65231

Barix Instreamer prior to version 04.07 is affected by a stored Cross Site Scripting (XSS) vulnerability in the Web UI I/O & Serial configuration page. The CTS close command user-input field is stored and later rendered on the Status page, enabling an attacker to inject script via this input. Roo...

Barix Instreamer 安全漏洞

Barix Instreamer is an audio encoding device from the Swiss company Barix. A security vulnerability exists in Barix Instreamer v04.06 and earlier versions, which originates from the presence of stored cross-site scripting in the Web UI I/O and Serial Configuration pages...

PT-2025-49589

Name of the Vulnerable Software and Affected Versions Barix Instreamer versions prior to 04.07 Description The software contains a Cross Site Scripting XSS issue within the Web UI. Specifically, the I/O & Serial configuration page’s CTS close command user-input field is affected. This field store...

CVE-2025-65231

Barix Instreamer v04.06 and earlier is vulnerable to Cross Site Scripting XSS in the Web UI I/O & Serial configuration page, specifically the CTS close command user-input field which is stored and later rendered on the Status page...

Linux Distros Unpatched Vulnerability : CVE-2025-40222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunre...

CVE-2025-65231

Barix Instreamer v04.06 and earlier is vulnerable to Cross Site Scripting XSS in the Web UI I/O & Serial configuration page, specifically the CTS close command user-input field which is stored and later rendered on the Status page...

CVE-2025-40283

A use-after-free was found in the btusb Bluetooth driver in the Linux kernel. In btusbdisconnect, calling usbdriverreleaseinterface frees the btusb data structure, but the code subsequently accesses fields from this freed structure, causing a use-after-free condition...

CVE-2025-40269

No description is available for this CVE. Mitigation To mitigate this issue, prevent the sndusbaudio kernel module from loading if USB audio functionality is not required. Create a file /etc/modprobe.d/disable-snd-usb-audio.conf with the following content: install sndusbaudio /bin/true After...

DEBIAN-CVE-2025-40275

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL pointer dereference in sndusbmixercontrolsbadd In sndusbcreatestreams, for UAC version 3 devices, the Interface Association Descriptor IAD is retrieved via usbifnumtoif. If this call fails, a fallback...

CVE-2025-40269

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential overflow of PCM transfer buffer The PCM stream data in USB-audio driver is transferred over USB URB packet buffers, and each packet size is determined dynamically. The packet sizes are limited by so...

CVE-2025-40283 Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: reorder cleanup in btusbdisconnect to avoid UAF There is a KASAN: slab-use-after-free read in btusbdisconnect. Calling "usbdriverreleaseinterface&btusbdriver, data-intf" will free the btusb data associated with...

CVE-2025-40275

CVE-2025-40275 is a Linux kernel vulnerability in the ALSA USB audio path. For UAC v3 devices, snd_usb_create_streams() may retrieve the Interface Association Descriptor (IAD) with usb_ifnum_to_if(), and if that call fails the code may fall back to the next interface to set a BADD profile. The co...

most: usb: Fix use-after-free in hdm_disconnect

...

CVE-2025-40222

In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...

CVE-2025-40223

In the Linux kernel, the following vulnerability has been resolved: most: usb: Fix use-after-free in hdmdisconnect hdmdisconnect calls mostderegisterinterface, which eventually unregisters the MOST interface device with deviceunregisteriface-dev. If that drops the last reference, the device core...

CVE-2025-63361

Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 was discovered to render the Administrator password in plaintext...

SUSE CVE-2025-40222

In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...

CVE-2025-63364

Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 was discovered to transmit Administrator credentials in plaintext...