Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: usb: gadget: ffs: The ffsdataclear function must clear the ffseventfd. This function is indirectly called from both ffsfskillsb and ffsep0release. As a result, it is called twice—once when the userland process closes ep0 and...

CVE-2026-31725 usb: gadget: f_ecm: Fix net_device lifecycle with device_move

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fecm: Fix netdevice lifecycle with devicemove The netdevice is allocated during function instance creation and registered during the bind phase with the gadget device as its sysfs parent. When the function unbinds, t...

PT-2026-36358

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the usb gadget f subset component where the net device is allocated during function instance creation and registered during the bind phase with the gadget device as it...

ROS-20260128-73-0013

A vulnerability in the drivers/usb/gadget/function/uaudio.c module of the Linux operating system kernel is related to file descriptor depletion. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

EUVD-2025-32835

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fix refcount leak on error path When failing to allocate reportdesc, opts-refcnt has already been incremented so it needs to be decremented to avoid leaving the options structure permanently locked...

The vulnerability in the driver/usb/gadget/function/u_audio.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/usb/gadget/function/uaudio.c module of the Linux operating system is related to the exhaustion of file descriptors. Exploiting this vulnerability can allow an attacker to cause a service failure...

GSD-2022-1007510 usb: gadget: function: fix dangling pnp_string in f_printer.c

usb: gadget: function: fix dangling pnpstring in fprinter.c This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.262 by commit...

GSD-2022-1007265 usb: gadget: function: fix dangling pnp_string in f_printer.c

usb: gadget: function: fix dangling pnpstring in fprinter.c This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...

GSD-2022-1006806 usb: gadget: function: fix dangling pnp_string in f_printer.c

usb: gadget: function: fix dangling pnpstring in fprinter.c This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

openSUSE 15 Security Update : kernel (openSUSE-SU-2022:0760-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0760-1 advisory. - Amazon Linux has been made aware of a potential Branch Target Injection BTI issue sometimes referred to as Spectre variant 2. This is a...

CVE-2021-0936

A use after free flaw in the Linux kernel's Gadget Function Driver for Android USB accessories functionality was found. A local user could use this flaw to crash the system or escalate their privileges on the system...

DEBIAN-CVE-2018-20961

In the Linux kernel before 4.16.4, a double free vulnerability in the fmidisetalt function of drivers/usb/gadget/function/fmidi.c in the fmidi driver may allow attackers to cause a denial of service or possibly have unspecified other impact...

UBUNTU-CVE-2016-7912

Use-after-free vulnerability in the ffsusercopyworker function in drivers/usb/gadget/function/ffs.c in the Linux kernel before 4.5.3 allows local users to gain privileges by accessing an I/O data structure after a certain callback call...