475 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000956)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000956 advisory. drivers/hid/hid-steelseries.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDSTEELSERIES is enabled, allows physically...
MiracleLinux 4 : kernel-2.6.32-573.12.1.el6 (AXSA:2016-018:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-018:01 advisory. Security issues fixed with this release: CVE-2015-2925 The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000584)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000584 advisory. drivers/hid/hid-pl.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDPANTHERLORD is enabled, allows physically proximate...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002466)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002466 advisory. drivers/hid/hid-ntrig.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDNTRIG is enabled, allows physically proximate...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002790)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002790 advisory. drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock without considering that sleeping is possible in a USB HID request callback, which...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001811)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001811 advisory. drivers/hid/hid-steelseries.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDSTEELSERIES is enabled, allows physically...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001864)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001864 advisory. Multiple array index errors in drivers/hid/hid-core.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11 allow physically proximate attacke...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002574)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002574 advisory. drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock without considering that sleeping is possible in a USB HID request callback, which...
Juniper Junos OS Vulnerability (JSA106000)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA106000 advisory. - In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers i...
CVE-2025-68656
Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, usbclassrequestgetdescriptor frees and reallocates hiddevice-ctrlxfer when an oversized descriptor is requested but continues to use the stale local pointer, leading to an immediate...
CVE-2025-68656
Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, usbclassrequestgetdescriptor frees and reallocates hiddevice-ctrlxfer when an oversized descriptor is requested but continues to use the stale local pointer, leading to an immediate...
EUVD-2025-206281
Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, calls to hidhostdeviceclose can free the same usbtransfert twice. The USB event callback and user code share the hidifacet state without locking, so both can tear down a READY interface...
CVE-2025-68657
CVE-2025-68657 affects the ESP-IDF USB Host HID driver. Before version 1.1.0, hid_host_device_close() can free the same usb_transfer_t twice, and the USB event callback shares hid_iface_t state with user code without locking, allowing race conditions that may tear down a READY interface in parall...
CVE-2025-68656 Espressif ESP-IDF USB Host HID (Human Interface Device) Driver Descriptor Use-After-Free Vulnerability
Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, usbclassrequestgetdescriptor frees and reallocates hiddevice-ctrlxfer when an oversized descriptor is requested but continues to use the stale local pointer, leading to an immediate...
CVE-2025-68656 Espressif ESP-IDF USB Host HID (Human Interface Device) Driver Descriptor Use-After-Free Vulnerability
Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, usbclassrequestgetdescriptor frees and reallocates hiddevice-ctrlxfer when an oversized descriptor is requested but continues to use the stale local pointer, leading to an immediate...
CVE-2011-0639
Apple Mac OS X does not properly warn the user before enabling additional Human Interface Device HID functionality over USB, which allows user-assisted attackers to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and mouse data sent by malware on a smartphone that the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000484)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000484 advisory. A flaw was found in the Linux kernel in the function hiddebugeventsread in drivers/hid/hid-debug.c file which may enter an infinite loop with certain parameters pass...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000316)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000316 advisory. In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka...
PT-2026-27747
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where raw event callbacks could occur even for a HID device that had not been claimed, potentially causing a crash if a broken device were connected. The...
PT-2026-21913
Name of the Vulnerable Software and Affected Versions Wireshark versions 4.4.0 through 4.4.13 Wireshark versions 4.6.0 through 4.6.3 Description The USB HID protocol dissector in Wireshark is susceptible to memory exhaustion, potentially leading to a denial of service. The issue occurs when...