147 matches found
Astra Linux – Vulnerability in Linux, Linux 5.10
A flaw in the Linux kernel is found in the nfcmrvlnciunregisterdev function in the drivers/nfc/nfcmrvl/main.c file. This flaw can cause both read and write operations to be performed after the device has been freed, without synchronization between the cleanup routine and the firmware download...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: btnxpuart: Fixed kernel panic during firmware release This fix addresses a kernel panic that occurred during the release of firmware in a stress test scenario where WLAN and Bluetooth firmware downloads occur...
CVE-2026-43069
A flaw was found in the Linux kernel's Bluetooth subsystem, specifically in the hcill component. A local user could exploit this vulnerability when the system attempts to download firmware. If the firmware content is invalid or empty after a successful request, the system fails to release the...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the hcill driver failing to release the firmware during a firmware download error path, potential...
CVE-2026-31747
In the Linux kernel, the following vulnerability has been resolved: comedi: me4000: Fix potential overrun of firmware buffer me4000xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format...
CVE-2026-31747
CVE-2026-31747 affects the Linux kernel code path for comedi me4000 firmware loading. The vulnerability arises when me4000_xilinx_download() blindly trusts the firmware file format and reads a header length from the first 4 bytes into file_length, then reads data from offset 16 of length file_len...
PT-2026-36382
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overrun can occur in the me4000 xilinx download function when loading firmware requested by request firmware. The function reads a data stream length from the first 4 bytes into...
Azure Linux 3.0 Security Update: kernel (CVE-2024-46749)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46749 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix Null pointer...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001714)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001714 advisory. A flaw in Linux Kernel found in nfcmrvlnciunregisterdev in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between...
Siemens SCALANCE, Ruggedcom ROX Use After Free (CVE-2022-1734)
A flaw in Linux Kernel found in nfcmrvlnciunregisterdev in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine. This plugin only works with Tenable.ot. Please visit...
PT-2025-50535
Name of the Vulnerable Software and Affected Versions Aqara Camera Hub G3 version 4.1.9 0027 Aqara Hub M2 version 4.3.6 0027 Aqara Hub M3 version 4.3.6 0025 Description Aqara Hub devices do not properly validate server certificates when downloading firmware updates over HTTPS. This allows attacke...
CVE-2025-65290
Aqara Hub devices including Camera Hub G3 4.1.90027, Hub M2 4.3.60027, and Hub M3 4.3.60025 fail to validate server certificates during HTTPS firmware downloads, allowing man-in-the-middle attackers to intercept firmware update traffic and potentially serve modified firmware files...
SUSE CVE-2025-40208
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...
EUVD-2025-150366
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...
CVE-2025-40208
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...
DEBIAN-CVE-2025-40208
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...
UBUNTU-CVE-2025-40208
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...
CVE-2025-40208 media: iris: fix module removal if firmware download failed
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...
CVE-2025-40208
CVE-2025-40208 is tied to the Linux kernel Iris media driver (qcom-iris). The public descriptions show a fix for module removal when firmware download/load fails (Direct firmware load for qcom/vpu/vpu33_p4.mbn failed with error -2; downstream init/core deinit messages; unbind path). Affected stac...
CVE-2025-40208
In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...