CVE-2026-23290

In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: validate USB endpoints The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not...

CVE-2026-23312 net: usb: kaweth: validate USB endpoints

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not ha...

PT-2026-27677

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The kaweth driver does not validate the number and types of USB endpoints of a device before binding to it. A malicious device lacking expected USB endpoints can cause the driver to cras...

CVE-2025-38618

In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept also has port...

VOICEYE WSActiveBridgeES versions prior to buffer error vulnerability

VOICEYE WSActiveBridgeES is an APP program for VOICEYE. A person with a print defect can access print information using the VOICEYE code on the print material. A security vulnerability exists in VOICEYE WSActiveBridgeES versions prior to 2.1.0.3, which stems from an incorrect binding check...