CVE-2026-31727

A flaw was found in the Linux kernel's USB gadget subsystem, specifically within the uether module. A local user can exploit this vulnerability by using a userspace tool to query a USB gadget interface during a specific detached state. This action can trigger a NULL pointer dereference, potential...

CVE-2026-31727 usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix NULL pointer deref in ethgetdrvinfo Commit ec35c1969650 "usb: gadget: fncm: Fix netdevice lifecycle with devicemove" reparents the gadget device to /sys/devices/virtual during unbind, clearing the gadget...

DEBIAN-CVE-2025-38418

In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Release rproc-cleantable after rprocattach fails When rproc-state = RPROCDETACHED is attached to remote processor through rprocattach, if rprochandleresources returns failure, then the clean table should be...

CVE-2025-21901 RDMA/bnxt_re: Add sanity checks on rdev validity

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add sanity checks on rdev validity There is a possibility that ulpirqstop and ulpirqstart callbacks will be called when the device is in detached state. This can cause a crash due to NULL pointer dereference as the...

PT-2025-30824

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists within the remoteproc subsystem of the Linux kernel. Specifically, when attempting to attach to a remote processor using rproc attach, if rproc handle resources fail...