Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003688)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003688 advisory. An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function in th...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003882)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003882 advisory. An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function in th...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000335)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000335 advisory. An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function in th...

Linux Distros Unpatched Vulnerability : CVE-2025-39996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarant...

SUSE CVE-2025-39996

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

media: b2c2: Fix use-after-free causing by irq_check_work in flexcop_pci_remove

...

EUVD-2025-34577

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

CVE-2025-39996

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

UBUNTU-CVE-2025-39996

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

CVE-2025-39996

CVE-2025-39996 affects the Linux kernel media driver for B2C2 FlexCop PCI. The underlying issue is a use-after-free caused by cancel_delayed_work() in flexcop_pci_remove(), which may free flexcop_device while irq_check_work is still running. The mitigation is to replace cancel_delayed_work() with...

CVE-2025-39996 media: b2c2: Fix use-after-free causing by irq_check_work in flexcop_pci_remove

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

CVE-2025-39996 media: b2c2: Fix use-after-free causing by irq_check_work in flexcop_pci_remove

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

PT-2025-42270

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free flaw within the b2c2 component, specifically in the flexcop pci remove function. The issue arises because cancel delayed work does not guarante...

SUSE CVE-2019-15291

An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function in the drivers/media/usb/b2c2/flexcop-usb.c driver...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2020-5560)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5560 advisory. 2.6.39-400.320.1 - rds: Avoid flushing MRs in rdsrdmadropkeys aru kolappan Orabug: 30650888 - media: b2c2-flexcop-usb: add sanity checking Oliver Neukum...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.43.1 - media: b2c2-flexcop-usb: add sanity checking Oliver Neukum Orabug: 30864534 CVE-2019-15291...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4258-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4258-1 advisory. It was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly validate device metadata. A physically...

USN-4254-2: Linux kernel (Xenial HWE) vulnerabilities

USN-4254-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM. It was discovered that the Linux kernel did not properly clear data structures on...

USN-4258-1: Linux kernel vulnerabilities

It was discovered that the Atheros 802.11ac wireless USB device driver in the Linux kernel did not properly validate device metadata. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2019-15099 It was discovered that a race condition existed in the...