Lucene search
+L

419 matches found

cve
cve
added 2026/05/08 1:31 p.m.35 views

CVE-2026-43327

CVE-2026-43327 affects the Linux kernel USB dummy-hcd code. The race involves usb_gadget_udc_reset() being invoked with a NULL second argument (driver) due to a race between USB reset and driver unbind, enabling a potential crash. The root cause was that stop_activity() could drop and re-acquire ...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References8Affected Software1
osv
osv
added 2026/05/08 1:31 p.m.4 views

CVE-2026-43324 USB: dummy-hcd: Fix interrupt synchronization error

In the Linux kernel, the following vulnerability has been resolved: USB: dummy-hcd: Fix interrupt synchronization error This fixes an error in synchronization in the dummy-hcd driver. The error has a somewhat involved history. The synchronization mechanism was introduced by commit 7dbd8f4cabd9...

7.8CVSS6.5AI score0.0013EPSS
Exploits0References10
debiancve
debiancve
added 2026/05/08 1:31 p.m.9 views

CVE-2026-43324

In the Linux kernel, the following vulnerability has been resolved: USB: dummy-hcd: Fix interrupt synchronization error This fixes an error in synchronization in the dummy-hcd driver. The error has a somewhat involved history. The synchronization mechanism was introduced by commit 7dbd8f4cabd9...

7.8CVSS5.7AI score0.0013EPSS
Exploits0
attackerkb
attackerkb
added 2026/05/08 1:31 p.m.7 views

CVE-2026-43324

In the Linux kernel, the following vulnerability has been resolved: USB: dummy-hcd: Fix interrupt synchronization error This fixes an error in synchronization in the dummy-hcd driver. The error has a somewhat involved history. The synchronization mechanism was introduced by commit 7dbd8f4cabd9...

5.7AI score0.0013EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/05/08 1:31 p.m.42 views

CVE-2026-43324 USB: dummy-hcd: Fix interrupt synchronization error

In the Linux kernel, the following vulnerability has been resolved: USB: dummy-hcd: Fix interrupt synchronization error This fixes an error in synchronization in the dummy-hcd driver. The error has a somewhat involved history. The synchronization mechanism was introduced by commit 7dbd8f4cabd9...

7.8CVSS0.0013EPSS
Exploits0References7
cve
cve
added 2026/05/08 1:31 p.m.30 views

CVE-2026-43324

The CVE-2026-43324 entry covers a Linux kernel USB dummy-hcd synchronization bug. The issue stems from an emulated synchronize_irq() that ran before emulated interrupt-disable, allowing potential callback races when a gadget driver is unbound. The fix moved synchronization to the dummy_udc_async_...

7.8CVSS5.7AI score0.0013EPSS
Exploits0References7Affected Software1
githubexploit
githubexploit
added 2026/05/08 4:48 a.m.80 views

DummyDataGenerator-Sung-UnPARK-17039326

No d...

5.8AI score
Exploits0
ptsecurity
ptsecurity
added 2026/05/08 12:0 a.m.17 views

PT-2026-38975

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An interrupt synchronization error exists in the dummy-hcd driver. The emulated synchronize irq function, which ensures all current handler callbacks have returned, was executing before...

7.8CVSS7.2AI score0.0013EPSS
Exploits0References19
ptsecurity
ptsecurity
added 2026/05/08 12:0 a.m.15 views

PT-2026-38978

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A locking and synchronization error exists in the USB dummy-hcd component. A race condition can occur between a USB reset and a driver unbind process. Specifically, the stop activity...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References21
cnnvd
cnnvd
added 2026/05/08 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a synchronization error in the USB dummy-hcd driver. This error may lead to race conditions and...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References1
nessus
nessus
added 2026/05/08 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB: dummy-hcd: Fix locking/synchronization error Syzbot testing was able to provoke an addressing exception and crash in the usbgadgetudcreset routine in...

5.5CVSS5.9AI score0.00095EPSS
Exploits0References2
osv
osv
added 2026/05/05 6:49 a.m.5 views

OPENSUSE-SU-2026:20676-1 Security update for build, product-composer

This update for build, product-composer fixes the following issues: Changes in build: - Support a new "IgnoreRebuild" config. - build-recipe-kiwi: Add support for oci containers Avoid needlessly compressing container images Detect container images based on build result file name - Fix queryrecipe...

7.3CVSS5.8AI score0.00209EPSS
Exploits0References2
osv
osv
added 2026/04/29 6:59 a.m.12 views

CLSA-2026-1777444367 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

9.8CVSS7.3AI score0.0145EPSS
Exploits8References1
osv
osv
added 2026/04/28 3:22 p.m.17 views

CLSA-2026-1777389760 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

9.8CVSS7.3AI score0.0145EPSS
Exploits8References1
jvn
jvn
added 2026/04/16 8:29 a.m.8 views

Arcserve UDP Console vulnerable to redirect to a dummy URL

Overview UDP Console provided by Arcserve contains the following vulnerability. Incorrectly specified destination in a communication channel CWE-941 - CVE-2026-40118 Shingo Ando reported this vulnerability to IPA, IPA reported it to Arcserve, and JPCERT/CC coordinated with Arcserve to publish the...

6.3CVSS6.6AI score0.00178EPSS
Exploits0References4
euvd
euvd
added 2026/04/16 6:31 a.m.7 views

EUVD-2026-23192

UDP Console provided by Arcserve contains an incorrectly specified destination in a communication channel vulnerability. When a user configures an activation server hostname of the affected product to a dummy URL, the product may unintentionally communicate with the dummy domain, causing...

6.3CVSS5.8AI score0.00178EPSS
Exploits0References3
nvd
nvd
added 2026/04/16 5:16 a.m.5 views

CVE-2026-40118

UDP Console provided by Arcserve contains an incorrectly specified destination in a communication channel vulnerability. When a user configures an activation server hostname of the affected product to a dummy URL, the product may unintentionally communicate with the dummy domain, causing...

6.3CVSS0.00178EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/04/16 4:19 a.m.4 views

CVE-2026-40118

UDP Console provided by Arcserve contains an incorrectly specified destination in a communication channel vulnerability. When a user configures an activation server hostname of the affected product to a dummy URL, the product may unintentionally communicate with the dummy domain, causing...

6.3CVSS6.6AI score0.00178EPSS
Exploits0References2
cve
cve
added 2026/04/16 4:19 a.m.17 views

CVE-2026-40118

CVE-2026-40118 involves Arcserve’s UDP Console. The issue is an incorrectly specified destination in a communication channel: if a user configures the activation server hostname to a dummy URL, the product may contact that dummy domain, potentially causing information disclosure. The provided doc...

6.3CVSS6.6AI score0.00178EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/04/16 4:19 a.m.5 views

CVE-2026-40118

UDP Console provided by Arcserve contains an incorrectly specified destination in a communication channel vulnerability. When a user configures an activation server hostname of the affected product to a dummy URL, the product may unintentionally communicate with the dummy domain, causing...

6.3CVSS5.8AI score0.00178EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder