Lucene search
K

24 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Prevent race conditions during ffsep0queuewait When performing fast composition switching, there is a possibility that the process of ffsep0write/ffsep0read may enter a race condition due to ep0req being freed...

7.8CVSS6.3AI score0.0022EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/12/21 12:23 a.m.4 views

SUSE CVE-2025-68287

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Fix race condition between concurrent dwc3removerequests call paths This patch addresses a race condition caused by unsynchronized execution of multiple call paths invoking dwc3removerequests, leading to premature...

5.5CVSS6.6AI score0.00194EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988808)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988808 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Prevent race during ffsep0queuewait While performing fast composition switch,...

7.8CVSS5.8AI score0.0022EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988993)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988993 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextod...

5.5CVSS6.1AI score0.0026EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986556)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986556 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextod...

5.5CVSS6.1AI score0.0026EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987210)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987210 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextod...

5.5CVSS6.1AI score0.0026EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.6 views

Vulnerability of the dwc3_wIndex_to_dep() function in the drivers/usb/dwc3/ep0.c module – The USB device driver support module in the Linux kernel allows a hacker to trigger a service failure.

Vulnerability of the dwc3wIndextodep function in the drivers/usb/dwc3/ep0.c module – The Linux kernel’s USB device support driver relies on the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.0026EPSS
Exploits0References20Affected Software1
SUSE CVE
SUSE CVE
added 2025/03/28 3:40 a.m.3 views

SUSE CVE-2022-49755

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Prevent race during ffsep0queuewait While performing fast composition switch, there is a possibility that the process of ffsep0write/ffsep0read get into a race condition due to ep0req being freed up from...

5.5CVSS6.4AI score0.0022EPSS
Exploits0References7
OSV
OSV
added 2024/05/31 11:8 a.m.10 views

OESA-2024-1678 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextodep and we might be referring a non-existing ep and trigger a NUL...

7.8CVSS6.3AI score0.01176EPSS
Exploits0References82
SUSE CVE
SUSE CVE
added 2024/05/23 3:5 a.m.2 views

SUSE CVE-2021-47269

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextodep and we might be referring a non-existing ep and trigger a NULL pointer exception. In certain configurations we might use fewer ep...

5.5CVSS6.4AI score0.0026EPSS
Exploits0References9
OSV
OSV
added 2024/05/21 3:15 p.m.2 views

DEBIAN-CVE-2021-47269

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextodep and we might be referring a non-existing ep and trigger a NULL pointer exception. In certain configurations we might use fewer ep...

5.5CVSS5.3AI score0.0026EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:15 p.m.1 views

UBUNTU-CVE-2021-47269

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextodep and we might be referring a non-existing ep and trigger a NULL pointer exception. In certain configurations we might use fewer ep...

5.5CVSS5.8AI score0.0026EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.4 views

PT-2023-35360 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.305 Description: A potential issue exists due to a race condition during ffs ep0 queue wait. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

7.2AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/12/15 7:15 p.m.3 views

CVE-2021-39640

In dwc3gadgetep0queue of ep0.c, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.8CVSS7.2AI score0.001EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/12/15 12:0 a.m.5 views

PT-2021-22685 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the dwc3 gadget ep0 queue function of ep0.c due to improper locking. This could lead to local escalation of privilege with no additional execution privilege...

7.8CVSS7.5AI score0.001EPSS
Exploits0References2
OSV
OSV
added 2021/06/30 12:35 a.m.8 views

GSD-2021-1001033 usb: dwc3: ep0: fix NULL pointer exception

usb: dwc3: ep0: fix NULL pointer exception This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/06/30 12:29 a.m.11 views

GSD-2021-1000955 usb: dwc3: ep0: fix NULL pointer exception

usb: dwc3: ep0: fix NULL pointer exception This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.44 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/06/30 12:29 a.m.9 views

UVI-2021-1000955 usb: dwc3: ep0: fix NULL pointer exception

usb: dwc3: ep0: fix NULL pointer exception This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.44 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/06/30 12:5 a.m.6 views

GSD-2021-1000898 usb: dwc3: ep0: fix NULL pointer exception

usb: dwc3: ep0: fix NULL pointer exception This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.126 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/06/30 12:5 a.m.19 views

UVI-2021-1000898 usb: dwc3: ep0: fix NULL pointer exception

usb: dwc3: ep0: fix NULL pointer exception This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.126 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder