2 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002936)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002936 advisory. The function hsogetconfigdata in drivers/net/usb/hso.c in the Linux kernel through 4.19.8 reads ifnum from the USB device as a u8 and uses it to index a small array,...
kernel: oob memory read in hso_probe in drivers/net/usb/hso.c
A flaw was found in the Linux kernel in the function hsoprobe which reads ifnum value from the USB device as an u8 and uses it without a length check to index an array, resulting in an OOB memory read in hsoprobe or hsogetconfigdata. An attacker with a forged USB device and physical access to a...