Lucene search
K

14 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq – Use sndcardfreewhenclosed when there is a USB disconnection. The callback for USB disconnection should be short and not too long. Alternatively, the current code uses sndcardfree when there is a disconnection, but...

5.5CVSS6.2AI score0.0021EPSS
Exploits0References2
OSV
OSV
added 2026/05/27 2:17 p.m.7 views

UBUNTU-CVE-2026-46004

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Handle probe errors properly The probe procedure of setupcard in caiaq driver doesn't treat the error cases gracefully, e.g. the error from sndcardregister calls sndcardfree but continues. This would lead to a UAF fo...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References6
CVE
CVE
added 2026/05/27 12:56 p.m.25 views

CVE-2026-46004

CVE-2026-46004 concerns the Linux kernel ALSA caiaq driver. The issue stems from the probe path in setup_card(), where error handling was insufficient: on certain errors the code could drop into non-fatal paths, risking a use-after-free (UAF) on subsequent caiaq-initiated calls. The patch introdu...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.31 views

CVE-2026-31701 ALSA: caiaq: take a reference on the USB device in create_card()

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

0.00117EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003879)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003879 advisory. go7007sndinit in drivers/media/usb/go7007/snd-go7007.c in the Linux kernel before 5.6 does not call sndcardfree for a failure path, which causes a memory leak, aka...

5.5CVSS6.7AI score0.00459EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004207)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004207 advisory. go7007sndinit in drivers/media/usb/go7007/snd-go7007.c in the Linux kernel before 5.6 does not call sndcardfree for a failure path, which causes a memory leak, aka...

5.5CVSS6.7AI score0.00459EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992307)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992307 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uaudio: don't let userspace block driver unbind In the unbind callback for fuac1 and...

5.5CVSS6.1AI score0.00126EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989868)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989868 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: us122l: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed ...

5.5CVSS6.2AI score0.0021EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989785)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989785 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

5.5CVSS6.3AI score0.0021EPSS
Exploits0References4
NVD
NVD
added 2025/05/02 4:15 p.m.8 views

CVE-2023-53045

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uaudio: don't let userspace block driver unbind In the unbind callback for fuac1 and fuac2, a call to sndcardfree via gaudiocleanup will disconnect the card and then wait for all resources to be released, which happe...

5.5CVSS0.00126EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/12/28 3:49 a.m.4 views

SUSE CVE-2024-56532

In the Linux kernel, the following vulnerability has been resolved: ALSA: us122l: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...

3.3CVSS7.6AI score0.0021EPSS
Exploits0References17
Vulnrichment
Vulnrichment
added 2024/12/27 2:11 p.m.1 views

CVE-2024-56531 ALSA: caiaq: Use snd_card_free_when_closed() at disconnection

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...

7.6AI score0.0021EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the improper use of sndcardfree in the USB disconnect callback in the ALSA:us122l module, which could result...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the unused sndcardfreewhenclosed on USB disconnect in the ALSA:caiaq module, which could result in a soft lo...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References9
Rows per page
Query Builder