122 matches found
CVE-2022-49028 ixgbevf: Fix resource leak in ixgbevf_init_module()
In the Linux kernel, the following vulnerability has been resolved: ixgbevf: Fix resource leak in ixgbevfinitmodule ixgbevfinitmodule won't destroy the workqueue created by createsinglethreadworkqueue when pciregisterdriver failed. Add destroyworkqueue in fail path to prevent the resource leak...
CVE-2024-43883
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
SUSE CVE-2024-43883
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
DEBIAN-CVE-2024-43883
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
CVE-2024-43883
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
CVE-2024-43883 usb: vhci-hcd: Do not drop references before new references are gained
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
CVE-2024-43883
CVE-2024-43883 is a Linux kernel issue in the usb vhci-hcd driver. The bug allowed stale references to be carried due to dropping existing references before new ones are gained, potentially enabling use-after references. The description and linked advisories show the root cause as racing/dropping...
CVE-2024-43883 usb: vhci-hcd: Do not drop references before new references are gained
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
CVE-2024-43883
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
CVE-2024-43883
In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes...
CVE-2023-52907 nfc: pn533: Wait for out_urb's completion in pn533_usb_send_frame()
In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Wait for outurb's completion in pn533usbsendframe Fix a use-after-free that occurs in hcd when inurb sent from pn533usbsendframe is completed earlier than outurb. Its callback frees the skb data in...
CVE-2023-52907 nfc: pn533: Wait for out_urb's completion in pn533_usb_send_frame()
In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Wait for outurb's completion in pn533usbsendframe Fix a use-after-free that occurs in hcd when inurb sent from pn533usbsendframe is completed earlier than outurb. Its callback frees the skb data in...
kernel: usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq
In the Linux kernel, the following vulnerability has been resolved: usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq Can not set the @sharedhcd to NULL before decrease the usage count by usbputhcd, this will cause the shared hcd not released...
QEMU: hcd-ehci: DMA reentrancy issue (incomplete fix for CVE-2021-3750)
This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750...
kernel: usb: xhci_plat_remove: avoid NULL dereference
In the Linux kernel, the following vulnerability has been resolved: usb: xhciplatremove: avoid NULL dereference Since commit 4736ebd7fcaff1eb8481c140ba494962847d6e0a "usb: host: xhci-plat: omit shared hcd if either root hub has no ports" xhci-sharedhcd can be NULL, which causes the following Oops...
SUSE CVE-2021-38204
drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service use-after-free and panic by removing a MAX-3421 USB device in certain situations...
GSD-2023-1000989 usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq
usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000554 usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq
usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
The vulnerability of the dwc2handle_packet function in the hw/usb/hcd-dwc2.c component of the hardware/USB/HCD-DWC2 emulator for QEMU allows a hacker to trigger a service failure.
The vulnerability of the dwc2handlepacket function in the hw/usb/hcd-dwc2.c component of the QEMU hardware emulation software is related to the lack of checks for division by zero. Exploiting this vulnerability allows a perpetrator to cause a system failure...
PT-2022-33520 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 2.6.29 through 5.19.1 Description: A refcount leak was discovered in the ehci hcd ppc of probe function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions 2.6....