Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002558)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002558 advisory. The acmprobe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL pointer...

kernel: use-after-free caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver

A use-after-free flaw was found in the acmprobe USB subsystem in the Linux kernel. A race condition occurs when a destroy procedure is initiated allowing the refcount to decrement on the interface so early that it is never under counted. A malicious USB device is required for exploit. System...

kernel: use-after-free caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver

A use-after-free flaw was found in the acmprobe USB subsystem in the Linux kernel. A race condition occurs when a destroy procedure is initiated allowing the refcount to decrement on the interface so early that it is never under counted. A malicious USB device is required for exploit. System...

Linux kernel denial of service vulnerability (CNVD-2016-02789)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'acmprobe' function in the drivers/usb/class/cdc-acm.c file in Linux kernel versions prior to 4.5.1. The vulnerability can be...

DEBIAN-CVE-2016-3138

The acmprobe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL pointer dereference and system crash via a USB device without both a control and a data endpoint descriptor...

UBUNTU-CVE-2016-3138

The acmprobe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL pointer dereference and system crash via a USB device without both a control and a data endpoint descriptor...

PT-2016-5381 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.5.1 Description: The issue allows physically proximate attackers to cause a denial of service, resulting in a NULL pointer dereference and system crash, via a USB device without both a control and a data...