Lucene search
K

581 matches found

Cvelist
Cvelist
added 2026/01/05 9:32 a.m.24 views

CVE-2025-68753 ALSA: firewire-motu: add bounds check in put_user loop for DSP events

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...

0.00161EPSS
Exploits0References6
CVE
CVE
added 2026/01/05 9:32 a.m.30 views

CVE-2025-68753

The CVE CVE-2025-68753 relates to the Linux kernel ALSA: firewire-motu DSP event handling. The issue stems from a missing bounds check in a put_user() loop that copies DSP event data; if the user buffer size is not aligned to 4 bytes, data could be written beyond the intended boundary, potentiall...

6.2AI score0.00161EPSS
Exploits0References6
OSV
OSV
added 2026/01/05 9:32 a.m.4 views

CVE-2025-68753 ALSA: firewire-motu: add bounds check in put_user loop for DSP events

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...

6.2AI score0.00161EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/01/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-68753

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size...

6.3AI score0.00161EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/25 3:54 p.m.4 views

CVE-2025-68347

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

5.5CVSS6.4AI score0.00195EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/25 12:24 a.m.3 views

SUSE CVE-2025-68347

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

6.1CVSS7AI score0.00195EPSS
Exploits0References22
EUVD
EUVD
added 2025/12/24 12:30 p.m.1 views

EUVD-2025-205107

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

6.5AI score0.00195EPSS
Exploits0References5
OSV
OSV
added 2025/12/24 11:15 a.m.8 views

AZL-73096 CVE-2025-68347 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

6AI score0.00195EPSS
Exploits0References1
NVD
NVD
added 2025/12/24 11:15 a.m.7 views

CVE-2025-68347

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

0.00195EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/24 11:15 a.m.3 views

CVE-2025-68347

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

6AI score0.00195EPSS
Exploits0References24
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.5 views

PT-2025-50707

In WAVES send data to dsp of libaoc waves.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.8AI score0.00071EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/13 2:25 p.m.3 views

CVE-2025-40113

In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcom: pas: Shutdown lite ADSP DTB on X1E The ADSP firmware on X1E has separate firmware binaries for the main firmware and the DTB. The same applies for the "lite" firmware loaded by the boot firmware. When preparing ...

2.5CVSS5.2AI score0.00181EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990785)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990785 advisory. In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible memory leak in mISDNdspelementregister Afer commit 1fa5ae857bb1 driver core:...

5.5CVSS6AI score0.00166EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/11/11 8:21 a.m.5 views

kernel: firmware: cs_dsp: Fix OOB memory read access in KUnit test (wmfw info)

In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Fix OOB memory read access in KUnit test wmfw info KASAN reported out of bounds access - csdspmockwmfwaddinfo, because the source string length was rounded up to the allocation size...

7.1CVSS5.7AI score0.00156EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989228)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989228 advisory. In the Linux kernel, the following vulnerability has been resolved: mISDN: Fix memory leak in dsppipelinebuild dsppipelinebuild allocates dup pointer by kstrdupcfg,...

5.5CVSS5.9AI score0.00247EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989206)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989206 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is...

4.7CVSS5.8AI score0.00135EPSS
Exploits0References4
CVE
CVE
added 2025/11/04 3:19 a.m.14 views

CVE-2025-47368

CVE-2025-47368 affects Qualcomm DSP Service (Memory corruption in MCDM IOCTL processing when dereferencing an invalid userspace address in a user buffer). The CVSS v3.1 vector indicates a Local, Low-Complexity exploit with Low Privileges Required, no user interaction, and impacts on confidentiali...

7.8CVSS6.8AI score0.00079EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/04 3:19 a.m.23 views

CVE-2025-47368 Buffer Over-read in DSP Service

Memory corruption when dereferencing an invalid userspace address in a user buffer during MCDM IOCTL processing...

7.8CVSS0.00079EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.6 views

PT-2025-44932

Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description A memory corruption issue exists when dereferencing an invalid userspace address in a user buffer during MCDM IOCTL processing. This can lead to a buffer over-read in the DSP Service. Recommendations At the...

7.8CVSS6.7AI score0.00079EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/23 7:21 p.m.3 views

Malicious code in ads-dsp-lite-components (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
Rows per page
Query Builder