Lucene search
+L

134 matches found

SUSE CVE
SUSE CVE
added 2024/04/12 2:11 a.m.3 views

SUSE CVE-2024-26749

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

5.5CVSS6.4AI score0.00245EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/04/10 2:16 a.m.7 views

SUSE CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

5.5CVSS6.4AI score0.00242EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2024/04/03 9:51 p.m.21 views

CVE-2024-26749

A vulnerability was found in the Linux kernel's USB CDNS3 driver, where improper handling of memory in cdns3gadgetepdisable can lead to a use-after-free condition. This issue can allows attackers to exploit freed memory regions, which could result in crashes or arbitrary code execution. Mitigatio...

6CVSS8.3AI score0.00245EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/04/03 9:50 p.m.26 views

CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlockdev-lock; 831 usbgadgetgivebackrequestep-endpoint, 832 request; 833 spinlockdev-lock; 834 835 836 if request-buf == privdev-zlpbuf 8...

4.4CVSS8.2AI score0.00242EPSS
Exploits0References4
NVD
NVD
added 2024/04/03 5:15 p.m.11 views

CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS7.5AI score0.00242EPSS
Exploits0References8
OSV
OSV
added 2024/04/03 5:15 p.m.2 views

DEBIAN-CVE-2024-26749

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

7.8CVSS5.5AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2024/04/03 5:15 p.m.2 views

DEBIAN-CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS5.5AI score0.00242EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/04/03 5:15 p.m.29 views

CVE-2024-26749

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

7.8CVSS6.2AI score0.00245EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2024/04/03 5:15 p.m.19 views

CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS6.2AI score0.00242EPSS
Exploits0References26
OSV
OSV
added 2024/04/03 5:15 p.m.3 views

UBUNTU-CVE-2024-26749

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

7.8CVSS6.1AI score0.00245EPSS
Exploits0References22
OSV
OSV
added 2024/04/03 5:15 p.m.4 views

UBUNTU-CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS6.1AI score0.00242EPSS
Exploits0References27
Vulnrichment
Vulnrichment
added 2024/04/03 5:0 p.m.16 views

CVE-2024-26749 usb: cdns3: fixed memory use after free at cdns3_gadget_ep_disable()

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

6.8AI score0.00245EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2024/04/03 5:0 p.m.22 views

CVE-2024-26749

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

7.8CVSS6.6AI score0.00245EPSS
Exploits0
CVE
CVE
added 2024/04/03 5:0 p.m.111 views

CVE-2024-26749

CVE-2024-26749 concerns the Linux kernel USB CDNS3 gadget path. The issue was a memory-use-after-free in cdns3_gadget_ep_disable(), where priv_req is freed via cdns3_gadget_ep_free_request() but list_del_init(&priv_req->list) used priv_req->list after it had been freed, triggering a use-aft...

7.8CVSS6.4AI score0.00245EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2024/04/03 5:0 p.m.112 views

CVE-2024-26748

CVE-2024-26748 (Linux kernel) — Affects the usb cdns3 gadget driver. A memory double-free could occur when handling a zero-length packet that was queued as an extra request. The patch adds a check at line 829 to skip usb_gadget_giveback_request() for this additional zero-length request, avoiding ...

7.8CVSS6.4AI score0.00242EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2024/04/03 5:0 p.m.22 views

CVE-2024-26748 usb: cdns3: fix memory double free when handle zero packet

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.7AI score0.00242EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/04/03 5:0 p.m.25 views

CVE-2024-26749 usb: cdns3: fixed memory use after free at cdns3_gadget_ep_disable()

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3gadgetepdisable ... cdns3gadgetepfreerequest&privep-endpoint, &privreq-request; listdelinit&privreq-list; ... 'privreq' actually free at cdns3gadgetepfreerequest. But listdelinit us...

7.7AI score0.00245EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2024/04/03 5:0 p.m.27 views

CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS6.8AI score0.00242EPSS
Exploits0
OSV
OSV
added 2024/04/03 5:0 p.m.10 views

CVE-2024-26748 usb: cdns3: fix memory double free when handle zero packet

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS6AI score0.00242EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: usb: cdns3 fix use-after-free at workaround 2

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3 fix use-after-free at workaround 2 BUG: KFENCE: use-after-free read in listdelentryvalid+0x10/0xac cdns3wa2removeoldrequest ... kfreeprivreq-request.buf; cdns3gadgetepfreerequest&privep-endpoint, &privreq-request;...

7.8CVSS6.3AI score0.00163EPSS
Exploits0References5
Rows per page
Query Builder