Lucene search
K

21 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe when using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when...

5.5CVSS6AI score0.00246EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986318)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986318 advisory. In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a b...

7.1CVSS5.9AI score0.00186EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986913)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986913 advisory. In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a b...

7.1CVSS5.9AI score0.00186EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49398

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can ...

5.5CVSS6.2AI score0.00246EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/02/27 3:7 a.m.2 views

SUSE CVE-2022-49398

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when traversi...

5.5CVSS7.8AI score0.00246EPSS
Exploits0References9
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

UBUNTU-CVE-2022-49398

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when traversi...

5.5CVSS6AI score0.00246EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/02/26 2:12 a.m.11 views

CVE-2022-49398 usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when traversi...

0.00246EPSS
Exploits0References4
OSV
OSV
added 2025/02/26 2:12 a.m.9 views

CVE-2022-49398 usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when traversi...

5.5CVSS5.2AI score0.00246EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from usb: dwc3: gadget not properly handling list traversal when using giveback...

5.5CVSS5.5AI score0.00246EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/05/17 1:27 p.m.12 views

CVE-2024-35825 usb: gadget: ncm: Fix handling of zero block length packets

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Fix handling of zero block length packets While connecting to a Linux host with CDCNCMNTBDEFSIZETX set to 65536, it has been observed that we receive short packets, which come at interval of 5-10 seconds sometim...

6.6AI score0.0023EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/05/17 11:40 a.m.12 views

CVE-2024-27405 usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs It is observed sometimes when tethering is used over NCM with Windows 11 as host, at some instances, the gadgetgiveback has one byte appended at the end of a prop...

6.7AI score0.01287EPSS
Exploits0References8
OSV
OSV
added 2024/05/17 11:40 a.m.20 views

CVE-2024-27405 usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs It is observed sometimes when tethering is used over NCM with Windows 11 as host, at some instances, the gadgetgiveback has one byte appended at the end of a prop...

7.5CVSS5.9AI score0.01287EPSS
Exploits0References13
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.7 views

The vulnerability of the cdns3_gadget_giveback() function in the drivers/usb/cdns3/cdns3-gadget.c file of the USB Cadence driver for the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cdns3gadgetgiveback function in the drivers/usb/cdns3/cdns3-gadget.c file of the USB Cadence driver for the Linux operating system is related to the reallocation of allocated memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

4.6CVSS6.3AI score0.00242EPSS
Exploits0References21Affected Software3
OSV
OSV
added 2024/04/03 5:15 p.m.1 views

DEBIAN-CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS5.5AI score0.00242EPSS
Exploits0References1
OSV
OSV
added 2024/04/03 5:15 p.m.2 views

UBUNTU-CVE-2024-26748

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if request-complete 830 spinunlock&privdev-lock; 831 usbgadgetgivebackrequest&privep-endpoint, 832 request; 833 spinlock&privdev-lock; 834 835 836 if request-buf ==...

7.8CVSS6.1AI score0.00242EPSS
Exploits0References27
SUSE CVE
SUSE CVE
added 2023/08/08 1:32 a.m.4 views

SUSE CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS6.3AI score0.00516EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2023/08/02 12:0 a.m.11 views

The vulnerability of the `usb_giveback_urb` function in Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the usbgivebackurb function in Linux operating systems is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows an attacker to cause a service failure...

4.9CVSS5.6AI score0.00516EPSS
Exploits1References11Affected Software3
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.4 views

SUSE CVE-2021-39792

In usbgadgetgivebackrequest of core.c, there is a possible use after free out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

4.1CVSS4AI score0.00089EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.2 views

kernel: usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when traversi...

5.5CVSS6.3AI score0.00246EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.1 views

kernel: usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Replace listforeachentrysafe if using giveback The listforeachentrysafe macro saves the current item n and the item after n+1, so that n can be safely removed without corrupting the list. However, when traversi...

5.5CVSS6.3AI score0.00246EPSS
Exploits0References5
Rows per page
Query Builder