kernel: usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths

A use-after-free vulnerability was found in the DWC3 USB controller driver in the Linux kernel. Multiple unsynchronized execution paths can invoke dwc3removerequests concurrently, leading to premature freeing of USB requests. When one path frees requests while another is still processing them, a...

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion via the avahiwideareascancache process. An attacker can cause a crash of the daemon by sending crafted D-Bus requests that create record browsers with the AVAHILOOKUPUSEWIDEAREA flag set. Remediation A fix was pushed...

PT-2025-53106

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the ath9k High-Speed USB HIF USB driver, specifically within the ath9k hif usb dealloc tx urbs function. The issue stems from a failure to...

CVE-2022-50565

CVE-2022-50565 affects the Linux kernel (wifi: plfxlc) and describes a potential memory leak in __lf_x_usb_enable_rx(), where urbs were not freed on exception paths. The mitigation adds a kfree() for urbs within the error label, and the patch was tested for compilation. Exploitation specifics, af...

PT-2025-33802

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's Wi-Fi driver for rtl818x devices. Specifically, the issue involves the order of operations during the rtl8187 stop function. Failing to kill URBs US...

Exploit for Incorrect Authorization in Polkit_Project Polkit

CVE-2021-3560 - Polkit Local Privilege Escalation...

VulnCheck KEV: CVE-2021-3560

Red Hat Polkit contains an incorrect authorization vulnerability through the bypassing of credential checks for D-Bus requests, allowing for privilege escalation...

Red Hat Polkit Incorrect Authorization Vulnerability

Red Hat Polkit contains an incorrect authorization vulnerability through the bypassing of credential checks for D-Bus requests, allowing for privilege escalation...

Exploit for Incorrect Authorization in Polkit_Project Polkit

Exploit for CVE-2021-3560 Polkit - Local Privilege Escalatio...

CVE-2021-3560

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this...

CVE-2021-3560

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this...

CVE-2021-3560

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this...

EulerOS Virtualization 3.0.6.0 : polkit (EulerOS-SA-2022-1090)

According to the versions of the polkit packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of th...

EulerOS Virtualization 2.9.0 : polkit (EulerOS-SA-2021-2765)

According to the versions of the polkit packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of th...

EulerOS 2.0 SP9 : polkit (EulerOS-SA-2021-2537)

According to the versions of the polkit packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to...

PT-2021-3362

Name of the Vulnerable Software and Affected Versions Polkit versions prior to 0.119 Description It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivilege...

CVE-2009-0578

GNOME NetworkManager before 0.7.0.99 does not properly verify privileges for dbus 1 modify and 2 delete requests, which allows local users to change or remove the network connections of arbitrary users via unspecified vectors related to org.freedesktop.NetworkManagerUserSettings and atconsole...