54 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002943)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002943 advisory. The digiportinit function in drivers/usb/serial/digiacceleport.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992985)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992985 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: verify the expected usbendpoints are present The bug arises when a USB device claims...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992371)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992371 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: verify the expected usbendpoints are present The bug arises when a USB device claims...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990577)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990577 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: vmk80xx: fix transfer-buffer overflows The driver uses endpoint-sized USB transfer buffer...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989008)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989008 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: aiptek - properly check endpoint type Syzbot reported warning in usbsubmiturb which is...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989062)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989062 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: vmk80xx: fix transfer-buffer overflows The driver uses endpoint-sized USB transfer buffer...
SUSE CVE-2023-53644
In the Linux kernel, the following vulnerability has been resolved: media: radio-shark: Add endpoint checks The syzbot fuzzer was able to provoke a WARNING from the radio-shark2 driver: ------------ cut here ------------ usb 1-1: BOGUS urb xfer, pipe 1 != type 3 WARNING: CPU: 0 PID: 3271 at...
CVE-2023-53644 media: radio-shark: Add endpoint checks
In the Linux kernel, the following vulnerability has been resolved: media: radio-shark: Add endpoint checks The syzbot fuzzer was able to provoke a WARNING from the radio-shark2 driver: ------------ cut here ------------ usb 1-1: BOGUS urb xfer, pipe 1 != type 3 WARNING: CPU: 0 PID: 3271 at...
EUVD-2022-55558
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-50297
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath9k: verify the expected usbendpoints are present The bug arises when a USB device claims to be an ATH9K but doesn't have the expected endpoints. In thi...
CVE-2022-50297 wifi: ath9k: verify the expected usb_endpoints are present
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: verify the expected usbendpoints are present The bug arises when a USB device claims to be an ATH9K but doesn't have the expected endpoints. In this case there was an interrupt endpoint where the driver expected a bu...
PT-2025-37599
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the ath9k module related to USB endpoint handling. The issue occurs when a USB device identifies as an ATH9K but lacks the expected endpoints,...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fixed a stack-out-of-bounds read in usbcheckintendpoints Syzbot1 identified a stack-out-of-bounds read of the epaddr array from the hid-thrustmaster driver. This array is passed to the usbcheckintendpoints...
CVE-2021-42553
A buffer overflow vulnerability in stm32mwusbhost of STMicroelectronics in versions before 3.5.1 allows an attacker to execute arbitrary code when the descriptor contains more endpoints than USBHMAXNUMENDPOINTS. The library is typically integrated when using a RTOS such as FreeRTOS on STM32 MCUs...
OESA-2025-1512 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix a flaw in existing endpoint checks Syzbot once again identified a flaw in usb endpoint checking, see 1. This time the issue stems from a...
AZL-57764 CVE-2025-21794 affecting package kernel for versions less than 6.6.79.1-1
In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fix stack-out-of-bounds read in usbcheckintendpoints Syzbot1 has detected a stack-out-of-bounds read of the epaddr array from hid-thrustmaster driver. This array is passed to usbcheckintendpoints function...
The vulnerability of the vmk80xx component of the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the vmk80xx component of the Linux operating system’s kernel is related to resource management errors in the vmk80xxfindusbendpoints function. Exploiting this vulnerability can allow an attacker to cause a service failure...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-45011)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45011 advisory. - In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when...
SUSE CVE-2024-45011
In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the driver probes the device, that all endpoints that the driver may attempt to access exist and are of the correct type. All XillyUSB devices must have a Bulk IN...
CVE-2024-45011
In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the driver probes the device, that all endpoints that the driver may attempt to access exist and are of the correct type. All XillyUSB devices must have a Bulk IN...