CVE-2020-25624

hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver...

UBUNTU-CVE-2020-25624

hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver...

PT-2020-6461

Name of the Vulnerable Software and Affected Versions QEMU version 5.0.0 Description The issue is related to the hw/usb/hcd-ohci.c component in the QEMU hardware emulator, which can lead to an infinite loop when a TD list has a loop. This can cause a denial of service. Recommendations For QEMU...

The vulnerability of the EHCI controller in VMware ESXi, VMware Workstation, and VMware Fusion allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the EHCI controller in VMware ESXi, VMware Workstation, and VMware Fusion lies in the lack of protection for service data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the USB 2.0 controller EHCI in VMware ESXi, VMware Workstation, and VMware Fusion allows a attacker to execute arbitrary code.

The vulnerability of the USB 2.0 controller EHCI in VMware ESXi, VMware Workstation, and VMware Fusion stems from synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the xHCI component in the Oracle VM VirtualBox virtual machine allows a hacker to gain unauthorized access to protected information.

The vulnerability of the xHCI component in Oracle VM VirtualBox is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

"Code 10 Device Cannot Start" error for EHCI USB Controller devices in Device Manager in Windows Server 2012 R2

"Code 10 Device Cannot Start" error for EHCI USB Controller devices in Device Manager in Windows Server 2012 R2 This article describes an issue in which you receive a "Code 10 Device Cannot Start" error message for Enhanced Host Controller Interface EHCI USB Controller devices in Device Manager i...

edk2: stack overflow in XHCI causing denial of service

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access...

DEBIAN-CVE-2019-15917

An issue was discovered in the Linux kernel before 5.0.5. There is a use-after-free issue when hciuartregisterdev fails in hciuartsetproto in drivers/bluetooth/hcildisc.c...

edk2: stack overflow in XHCI causing denial of service

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access...

Google Android Bluetooth hci_len Heap Buffer Overflow Vulnerability

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. A heap buffer overflow vulnerability exists in the parsing of Bluetooth packet lengths in Google Android. The vulnerability stems from a failure to properly validat...

CVE-2018-19860

Broadcom firmware before summer 2014 on Nexus 5 BCM4335C0 2012-12-11, Raspberry Pi 3 BCM43438A1 2014-06-02, and unspecifed other devices does not properly restrict LMP commnds and executes certain memory contents upon receiving an LMP command, as demonstrated by executing an HCI command...

CVE-2019-5519

VMware ESXi 6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001, Workstation 15.x before 15.0.4, 14.x before 14.1.7, Fusion 11.x before 11.0.3, 10.x before 10.1.6 contain a Time-of-check Time-of-use TOCTOU vulnerability in the virtual USB 1.1 UHCI Universal Ho...

UBUNTU-CVE-2019-0161

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access...

CVE-2018-3700

Code injection vulnerability in the installer for IntelR USB 3.0 eXtensible Host Controller Driver for Microsoft Windows 7 before version 5.0.4.43v2 may allow a user to potentially enable escalation of privilege via local access...

CVE-2018-3700

Code injection vulnerability in the installer for IntelR USB 3.0 eXtensible Host Controller Driver for Microsoft Windows 7 before version 5.0.4.43v2 may allow a user to potentially enable escalation of privilege via local access...

PT-2019-11179 · Intel +5 · Edk Ii +5

Name of the Vulnerable Software and Affected Versions: EDK II affected versions not specified Description: The issue is related to a stack overflow in XHCI for EDK II, which may allow an unauthenticated user to potentially enable denial of service via local access. Recommendations: At the moment,...

Google Android elevation of privilege vulnerability (CNVD-2018-10119)

Android is a Linux-based open-source operating system jointly developed by Google and the Open Handheld Alliance OHA for short, and Qualcomm MDM9206 and other central processing unit CPU products from Qualcomm are used in different platforms. A security vulnerability exists in the Qualcomm...

USN-3619-1: Linux kernel vulnerabilities

Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-16995 It was discovered that a...

DEBIAN-CVE-2017-16911

The vhcihcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP...