Lucene search
K

604 matches found

OSV
OSV
added 2023/11/01 12:39 p.m.11 views

USN-6465-2 linux-raspi vulnerabilities

Yu Hao and Weiteng Chen discovered that the Bluetooth HCI UART driver in the Linux kernel contained a race condition, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2023-31083 Lin Ma discovered that the Netlink...

5.5CVSS6.5AI score0.00454EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/09/19 2:6 p.m.8 views

Kernel: bluetooth: Unauthorized management command execution

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

6.8CVSS6.8AI score0.0147EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/08/08 1:32 a.m.4 views

SUSE CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS6.3AI score0.00516EPSS
Exploits1References3
OSV
OSV
added 2023/07/31 5:15 p.m.7 views

CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS6.5AI score0.00516EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/07/31 5:15 p.m.24 views

CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS5.8AI score0.00516EPSS
Exploits1References4
OSV
OSV
added 2023/07/31 5:15 p.m.3 views

UBUNTU-CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS5.8AI score0.00516EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2023/07/31 4:22 p.m.12 views

CVE-2023-4010 Kernel: usb: hcd: malformed usb descriptor leads to infinite loop in usb_giveback_urb()

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS7AI score0.00516EPSS
Exploits1References3
CVE
CVE
added 2023/07/31 4:22 p.m.161 views

CVE-2023-4010

CVE-2023-4010 reports a denial-of-service in the Linux kernel USB Host Controller Driver (framework) specifically in usb_giveback_urb. The description indicates a logic error in the goto-condition can cause the function to loop indefinitely when presented with a malformed descriptor, leading to D...

4.6CVSS4.4AI score0.00516EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/30 12:0 a.m.7 views

PT-2023-4073

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb giveback urb function has a logic loophole in its implementation, causing it to fall into an...

4.9CVSS5.5AI score0.00516EPSS
Exploits1References25
Positive Technologies
Positive Technologies
added 2023/07/25 12:0 a.m.4 views

PT-2025-40716

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s wifi subsystem, specifically within the rtw88 driver. The issue involves a potential crash and memory leak during driver unloading. This occurs becaus...

6CVSS7.2AI score0.0012EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/07/18 8:33 a.m.3 views

Kernel: bluetooth: Unauthorized management command execution

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

6.8CVSS6.8AI score0.0147EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.1 views

kernel: usb: xhci_plat_remove: avoid NULL dereference

In the Linux kernel, the following vulnerability has been resolved: usb: xhciplatremove: avoid NULL dereference Since commit 4736ebd7fcaff1eb8481c140ba494962847d6e0a "usb: host: xhci-plat: omit shared hcd if either root hub has no ports" xhci-sharedhcd can be NULL, which causes the following Oops...

5.5CVSS6.2AI score0.00175EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.0 views

kernel: xhci: Fix null pointer dereference in remove if xHC has only one roothub

In the Linux kernel, the following vulnerability has been resolved: xhci: Fix null pointer dereference in remove if xHC has only one roothub The remove path in xhci platform driver tries to remove and put both main and shared hcds even if only a main hcd exists one roothub This causes a null...

5.5CVSS6.3AI score0.0018EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: Bluetooth: When HCI work queue is drained, only queue chained work

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: When HCI work queue is drained, only queue chained work The HCI command, event, and data packet processing workqueue is drained to avoid deadlock in commit 76727c02c1e1 "Bluetooth: Call drainworkqueue before resetting...

5.5CVSS6.3AI score0.00148EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.5 views

kernel: Bluetooth: L2CAP: Fix memory leak in vhci_write

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix memory leak in vhciwrite Syzkaller reports a memory leak as follows: ==================================== BUG: memory leak unreferenced object 0xffff88810d81ac00 size 240: ... hex dump first 32 bytes: 00 00 ...

5.5CVSS6.3AI score0.00157EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: usb: host: ohci-ppc-of: Fix refcount leak bug

In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will return a node pointer with refcount incremented. We should use ofnodeput when it is not used anymore...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.7 views

kernel: xhci: Fix null pointer dereference in remove if xHC has only one roothub

In the Linux kernel, the following vulnerability has been resolved: xhci: Fix null pointer dereference in remove if xHC has only one roothub The remove path in xhci platform driver tries to remove and put both main and shared hcds even if only a main hcd exists one roothub This causes a null...

5.5CVSS6.3AI score0.0018EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.4 views

PT-2023-17780 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the btm ble process periodic adv sync lost evt function of ble scanner hci interface.cc. This could lead to local information disclosure,...

4.4CVSS4.2AI score0.00093EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/02/28 12:0 a.m.62 views

RHEL 9 : kernel (RHSA-2023:0951)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0951 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by...

7.8CVSS6.9AI score0.06346EPSS
Exploits5References12
Tenable Nessus
Tenable Nessus
added 2023/02/28 12:0 a.m.87 views

AlmaLinux 9 : kernel-rt (ALSA-2023:0979)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0979 advisory. - An out-of-bounds memory access flaw was found in the Linux kernel Intel's iSMT SMBus host controller driver in the way a user triggers the...

7.8CVSS6.2AI score0.06346EPSS
Exploits5References6
Rows per page
Query Builder