7 matches found
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: USB: Storage: Fix memory leak in USB bulk transport A memory leak in the kernel was identified using the ‘ioctlsg01’ test from the Linux Test Project LTP. The following bytes were observed: 0x53425355. When USB storage devices...
CVE-2026-43424
A flaw was found in the Linux kernel's USB gadget subsystem ftcm. A malicious or misconfigured USB host can exploit a race condition by sending specific Bulk-Only Transport BOT commands. This can trigger a NULL pointer dereference, leading to a kernel panic and a local Denial of Service DoS on th...
usb: storage: Fix memory leak in USB bulk transport
...
EUVD-2025-203792
In the Linux kernel, the following vulnerability has been resolved: usb: storage: Fix memory leak in USB bulk transport A kernel memory leak was identified by the 'ioctlsg01' test from Linux Test Project LTP. The following bytes were mainly observed: 0x53425355. When USB storage devices incorrect...
CVE-2025-68288
CVE-2025-68288 affects the Linux kernel USB storage path (SCSI generic /dev/sg) where a memory leak occurs in the bulk transport path when a data phase is skipped. The issue arises when the host extracts/validates the Command Status Wrapper (CSW) from the sg buffer but fails to clear it, leaving ...
CVE-2025-68288 usb: storage: Fix memory leak in USB bulk transport
In the Linux kernel, the following vulnerability has been resolved: usb: storage: Fix memory leak in USB bulk transport A kernel memory leak was identified by the 'ioctlsg01' test from Linux Test Project LTP. The following bytes were mainly observed: 0x53425355. When USB storage devices incorrect...
PT-2025-51692
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A kernel memory leak exists in USB storage devices when they incorrectly skip the data phase with status data. The code validates the CSW from the sg buffer but fails to clear it,...