Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021606)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021606 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

SUSE CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620

A flaw was found in the Linux kernel, specifically within the ALSA usx2y driver for the TASCAM US-144MKII audio interface. A malicious USB device, crafted to have an invalid configuration with a missing interface, can cause the driver to attempt to access a non-existent memory location a NULL...

DEBIAN-CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990271)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990271 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989988)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989988 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989090)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989090 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pa...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987010)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987010 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pa...

SUSE CVE-2024-56533

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...

DEBIAN-CVE-2024-56533

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper resource release on USB disconnection in the ALSA:usx2y module, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper resource release on USB disconnection in the ALSA:usx2y module, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper resource release on USB disconnection in the ALSA:usx2y module, which could lead to a memory leak...

SUSE CVE-2021-47332

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pass NULL pointer to freepagesexact. Add a proper NULL check for avoiding possible Oops...

DEBIAN-CVE-2021-47332

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pass NULL pointer to freepagesexact. Add a proper NULL check for avoiding possible Oops...

UBUNTU-CVE-2021-47332

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pass NULL pointer to freepagesexact. Add a proper NULL check for avoiding possible Oops...

UVI-2021-1001338 ALSA: usx2y: Don't call free_pages_exact() with NULL address

ALSA: usx2y: Don't call freepagesexact with NULL address This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.134 by commit...