Lucene search
+L

16 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host – Added an alignment check for the event ring read pointer. Although we check the event ring read pointer using “isvalidringptr” to ensure it is within the buffer range, there is another risk that the pointer might...

7.8CVSS5.6AI score0.00279EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop the channel lock before queuing buffers. Ensure that read and write locks for the channel are not acquired consecutively by dropping the read lock from parsexferevent. This allows a callback provided to the...

5.5CVSS6AI score0.00209EPSS
Exploits0References2
OSV
OSV
added 2026/02/16 10:56 a.m.53 views

CLSA-2026-1771239384 kernel: Fix of 75 CVEs

net/sched: Make cakeenqueue return NETXMITCN when past bufferlimit CVE-2025-39766 - NFSD: Avoid calling OPDESC with ops-opnum == OPILLEGAL CVE-2023-53680 - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow CVE-2023-53676 - KVM: x86: use arrayindexnospec with indices that come from...

7.8CVSS7AI score0.00519EPSS
Exploits3References1
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs. When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between itself...

7.8CVSS6.7AI score0.00143EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53598

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Range check CHDBOFF and ERDBOFF If the value read from the CHDBOFF and ERDBO...

5.5CVSS5.6AI score0.00137EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-28923

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS
Exploits0References7
NVD
NVD
added 2025/09/11 5:15 p.m.7 views

CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

7.8CVSS0.00143EPSS
Exploits0References8
OSV
OSV
added 2025/09/11 5:15 p.m.2 views

DEBIAN-CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

7.8CVSS6.4AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.7 views

UBUNTU-CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

7.8CVSS6.7AI score0.00143EPSS
Exploits0References34
Cvelist
Cvelist
added 2025/09/11 4:56 p.m.14 views

CVE-2025-39790 bus: mhi: host: Detect events pointing to unexpected TREs

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

0.00143EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/05/02 2:3 a.m.7 views

SUSE CVE-2025-23151

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Fix race between unprepare and queuebuf A client driver may use mhiunpreparefromtransfer to quiesce incoming data during the client driver's tear down. The client driver might also be processing data at the same...

5.5CVSS7.6AI score0.00119EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2024/03/13 4:24 a.m.4 views

SUSE CVE-2023-52493

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop chan lock before queuing buffers Ensure read and write locks for the channel are not taken in succession by dropping the read lock from parsexferevent such that a callback given to client can potentially queu...

5.1CVSS6.3AI score0.00209EPSS
Exploits0References10
OSV
OSV
added 2024/03/11 6:15 p.m.3 views

DEBIAN-CVE-2023-52494

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Add alignment check for event ring read pointer Though we do check the event ring read pointer by "isvalidringptr" to make sure it is in the buffer range, but there is another risk the pointer may be not aligned...

7.8CVSS5.5AI score0.00279EPSS
Exploits0References1
Prion
Prion
added 2024/03/11 6:15 p.m.24 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop chan lock before queuing buffers Ensure read and write locks for the channel are not taken in succession by dropping the read lock from parsexferevent such that a callback given to client can potentially queu...

7.2AI score0.00209EPSS
Exploits0References6
OSV
OSV
added 2024/03/11 6:15 p.m.5 views

UBUNTU-CVE-2023-52493

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop chan lock before queuing buffers Ensure read and write locks for the channel are not taken in succession by dropping the read lock from parsexferevent such that a callback given to client can potentially queu...

5.5CVSS6AI score0.00209EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2021/11/09 12:0 a.m.6 views

PT-2025-40761

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s MHI host component where the values read from the CHDBOFF and ERDBOFF registers are not properly validated. If these values fall outside the acceptabl...

7.8CVSS6.9AI score0.21314EPSS
Exploits0References440
Rows per page
Query Builder