Lucene search
K

39 matches found

OSV
OSV
added 2025/10/30 10:15 a.m.3 views

UBUNTU-CVE-2025-40094

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.7AI score0.00188EPSS
Exploits0References38
OSV
OSV
added 2025/10/30 10:15 a.m.3 views

UBUNTU-CVE-2025-40093

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fecm: Refactor bind path to use free After an bind/unbind cycle, the ecm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.7AI score0.00183EPSS
Exploits0References23
Debian CVE
Debian CVE
added 2025/10/30 9:48 a.m.4 views

CVE-2025-40095

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: frndis: Refactor bind path to use free After an bind/unbind cycle, the rndis-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.2AI score0.00183EPSS
Exploits0
Cvelist
Cvelist
added 2025/10/30 9:48 a.m.14 views

CVE-2025-40095 usb: gadget: f_rndis: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: frndis: Refactor bind path to use free After an bind/unbind cycle, the rndis-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

0.00183EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/30 9:48 a.m.9 views

CVE-2025-40094 usb: gadget: f_acm: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

0.00188EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/10/30 9:48 a.m.4 views

CVE-2025-40094

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.2AI score0.00188EPSS
Exploits0
CVE
CVE
added 2025/10/30 9:48 a.m.24 views

CVE-2025-40094

CVE-2025-40094 affects the Linux kernel’s USB gadget f_acm binding path. After a bind/unbind cycle, acm->notify_req can be left stale, and if a subsequent bind fails, the unified error label may try to free it, causing a NULL pointer dereference when accessing ep->ops->free_request. The ...

6AI score0.00188EPSS
Exploits0References6
OSV
OSV
added 2025/10/30 9:48 a.m.3 views

CVE-2025-40094 usb: gadget: f_acm: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

6.4AI score0.00188EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/10/30 9:48 a.m.5 views

CVE-2025-40093

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fecm: Refactor bind path to use free After an bind/unbind cycle, the ecm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.2AI score0.00183EPSS
Exploits0
CVE
CVE
added 2025/10/30 9:48 a.m.27 views

CVE-2025-40093

The CVE-2025-40093 entry concerns the Linux kernel USB gadget ECM (f_ecm) bind path. The vulnerability arises after a bind/unbind cycle where ecm->notify_req remains stale, causing a NULL pointer dereference when the system tries to free a request via ep->ops->free_request during a subse...

6.1AI score0.00183EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/30 9:48 a.m.12 views

CVE-2025-40093 usb: gadget: f_ecm: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fecm: Refactor bind path to use free After an bind/unbind cycle, the ecm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

0.00183EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/10/30 9:47 a.m.3 views

CVE-2025-40092

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Refactor bind path to use free After an bind/unbind cycle, the ncm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.2AI score0.00188EPSS
Exploits0
Cvelist
Cvelist
added 2025/10/30 9:47 a.m.9 views

CVE-2025-40092 usb: gadget: f_ncm: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Refactor bind path to use free After an bind/unbind cycle, the ncm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

0.00188EPSS
Exploits0References6
CVE
CVE
added 2025/10/30 9:47 a.m.16 views

CVE-2025-40092

Summary of CVE-2025-40092 : In the Linux kernel USB gadget stack for the f_ncm function, a stale ncm->notify_req after a bind/unbind cycle could be freed on a later failed bind, causing a NULL pointer dereference when ep->ops->free_request is accessed. The patch refactors the error handl...

6AI score0.00188EPSS
Exploits0References6
OSV
OSV
added 2025/10/30 9:47 a.m.4 views

CVE-2025-40092 usb: gadget: f_ncm: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Refactor bind path to use free After an bind/unbind cycle, the ncm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

6.4AI score0.00188EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/10/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40094

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error lab...

5.8AI score0.00188EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40095

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: frndis: Refactor bind path to use free After an bind/unbind cycle, the rndis-notifyreq is left stale. If a subsequent bind fails, the unified error...

6.1AI score0.00183EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40093

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: fecm: Refactor bind path to use free After an bind/unbind cycle, the ecm-notifyreq is left stale. If a subsequent bind fails, the unified error lab...

6.1AI score0.00183EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unreleased object reference in the VMBIND error path, which could lead to a memory leak...

6.1AI score0.0017EPSS
Exploits0References3
Rows per page
Query Builder