Lucene search
K

892 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000264)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000264 advisory. In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka...

6.1CVSS6.4AI score0.00488EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000280)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000280 advisory. In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka...

4.9CVSS6.4AI score0.00451EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000199)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000199 advisory. In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka...

4.9CVSS6.4AI score0.00738EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000206)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000206 advisory. In the Linux kernel before 5.3.11, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/can/usb/mcbausb.c driver, aka...

6.9CVSS6.9AI score0.00445EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-6178

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the usb 8dev read bulk callback function within the usb 8dev driver of the Linux kernel. This issue occurs because the USB framework unanchors URBs before the...

5.5CVSS5.4AI score0.00127EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/31 12:27 a.m.2 views

SUSE CVE-2023-54270

In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...

6.3CVSS6.5AI score0.00177EPSS
Exploits0References10
EUVD
EUVD
added 2025/12/30 3:30 p.m.4 views

EUVD-2023-60527

In the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: Fix endpoint check The syzbot fuzzer detected a problem in the udlfb driver, caused by an endpoint not having the expected type: usb 1-1: Read EDID byte 0 failed: -71 usb 1-1: Unable to get valid EDID from...

5.8AI score0.00173EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.11 views

CVE-2023-54270

In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...

6.2AI score0.00177EPSS
Exploits0References10
OSV
OSV
added 2025/12/30 1:15 p.m.8 views

UBUNTU-CVE-2022-50829

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...

5.7AI score0.00239EPSS
Exploits0References12
Microsoft CVE
Microsoft CVE
added 2025/12/24 9:4 a.m.5 views

can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header

...

5.5CVSS6.7AI score0.00156EPSS
Exploits0
CVE
CVE
added 2025/12/23 1:58 p.m.20 views

CVE-2025-68343

CVE-2025-68343 in the Linux kernel affects the can: gs_usb driver (gs_usb_receive_bulk_callback). The vulnerability arises from not validating the actual_length before accessing the gs_host_frame header, risking dereference of an incomplete header. The fix uses struct_group to describe the header...

6.1AI score0.00156EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/12/23 1:58 p.m.5 views

CVE-2025-68343

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbreceivebulkcallback: check actuallength before accessing header The driver expects to receive a struct gshostframe in gsusbreceivebulkcallback. Use structgroup to describe the header of the struct gshostframe and...

5.4AI score0.00156EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/23 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-68343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: gsusb: gsusbreceivebulkcallback: check actuallength before accessing header The driver expects to receive a struct gshostframe in gsusbreceivebulkcallback...

6.2AI score0.00156EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/18 12:23 a.m.6 views

SUSE CVE-2025-68307

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbxmitcallback: fix handling of failed transmitted URBs The driver lacks the cleanup of failed transfers of URBs. This reduces the number of available URBs per error by 1. This leads to reduced performance and...

5.3CVSS6.5AI score0.00161EPSS
Exploits0References21
NVD
NVD
added 2025/12/16 4:16 p.m.5 views

CVE-2025-68307

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbxmitcallback: fix handling of failed transmitted URBs The driver lacks the cleanup of failed transfers of URBs. This reduces the number of available URBs per error by 1. This leads to reduced performance and...

0.00161EPSS
Exploits0References6
OSV
OSV
added 2025/12/16 4:16 p.m.6 views

UBUNTU-CVE-2025-68290

In the Linux kernel, the following vulnerability has been resolved: most: usb: fix double free on late probe failure The MOST subsystem has a non-standard registration function which frees the interface on registration failures and on deregistration. This unsurprisingly leads to bugs in the MOST...

5.7AI score0.00173EPSS
Exploits0References36
OSV
OSV
added 2025/12/16 4:16 p.m.4 views

UBUNTU-CVE-2025-68308

In the Linux kernel, the following vulnerability has been resolved: can: kvaserusb: leaf: Fix potential infinite loop in command parsers The kvaserusbleafwaitcmd and kvaserusbleafreadbulkcallback functions contain logic to zero-length commands. These commands are used to align data to the USB...

6AI score0.00161EPSS
Exploits0References36
Cvelist
Cvelist
added 2025/12/16 3:6 p.m.30 views

CVE-2025-68307 can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbxmitcallback: fix handling of failed transmitted URBs The driver lacks the cleanup of failed transfers of URBs. This reduces the number of available URBs per error by 1. This leads to reduced performance and...

0.00161EPSS
Exploits0References6
CVE
CVE
added 2025/12/16 3:6 p.m.24 views

CVE-2025-68307

CVE-2025-68307 – Linux kernel can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs. Root cause: missing cleanup of failed URB transfers, decreasing available URBs per error by 1, which can degrade performance and may halt transmission. Affected: linux kernel driver can: gs...

6.1AI score0.00161EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.4 views

PT-2025-51702

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the Bluetooth subsystem, specifically in the btusb mediatek driver. A NULL dereference issue exists in the btusb mtk claim iso intf function. This...

6.1AI score0.00155EPSS
Exploits0
Rows per page
Query Builder