19 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: i2c: smbus – fixed the dereferencing of NULL function pointers. Baruch reported an OOPS error when using the Designware controller as the target. Only targeting mode breaks the assumption that one transfer function is always...
kernel: usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths
A use-after-free vulnerability was found in the DWC3 USB controller driver in the Linux kernel. Multiple unsynchronized execution paths can invoke dwc3removerequests concurrently, leading to premature freeing of USB requests. When one path frees requests while another is still processing them, a...
CVE-2023-54256
The CVE-2023-54256 entry ties to a Linux kernel vulnerability in the USB host controller (dwc3) where the device-side reset could be incorrectly issued during boot in host-only configurations. The issue stems from the core/PHY power-off handling in host mode; a race or uninitialized current dual-...
EUVD-2022-55412
Malicious code in bioql PyPI...
SUSE CVE-2022-50370
In the Linux kernel, the following vulnerability has been resolved: i2c: designware: Fix handling of real but unexpected device interrupts Commit c7b79a752871 "mfd: intel-lpss: Add Intel Alder Lake PCH-S PCI IDs" caused a regression on certain Gigabyte motherboards for Intel Alder Lake-S where...
CVE-2022-50370 i2c: designware: Fix handling of real but unexpected device interrupts
In the Linux kernel, the following vulnerability has been resolved: i2c: designware: Fix handling of real but unexpected device interrupts Commit c7b79a752871 "mfd: intel-lpss: Add Intel Alder Lake PCH-S PCI IDs" caused a regression on certain Gigabyte motherboards for Intel Alder Lake-S where...
Linux Distros Unpatched Vulnerability : CVE-2024-35984
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the...
Linux Distros Unpatched Vulnerability : CVE-2021-47269
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextodep and we might be referring a non-existing ep and trigger a NU...
usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock
...
The vulnerability of the smbus component in the Linux operating system’s kernel allows a hacker to cause a service failure.
The vulnerability of the smbus component in the Linux operating system’s kernel is related to OOPS errors when the designware controller is used only as a target object. Exploiting this vulnerability can allow an attacker to cause a service failure...
UBUNTU-CVE-2024-36894
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix race between aiocancel and AIO request complete FFS based applications can utilize the aiocancel callback to dequeue pending USB requests submitted to the UDC. There is a scenario where the FFS application...
SUSE CVE-2024-35984
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
AZL-42172 CVE-2024-35984 affecting package kernel for versions less than 6.6.35.1-4
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
DEBIAN-CVE-2024-35984
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
AZL-42213 CVE-2024-35984 affecting package kernel for versions less than 5.15.158.1-1
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
UBUNTU-CVE-2024-35984
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
CVE-2024-35984 i2c: smbus: fix NULL function pointer dereference
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
CVE-2024-35984 i2c: smbus: fix NULL function pointer dereference
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
CVE-2024-35984
CVE-2024-35984 is resolved in the Linux kernel by adding a NULL pointer check in __i2c_transfer to prevent a NULL function pointer dereference in i2c: smbus when the designware controller is used in target-only mode. Baruch reported an OOPS in this scenario due to the assumption that a transfer f...