Lucene search
K

22 matches found

RedHat Linux
RedHat Linux
added 2026/03/03 8:57 p.m.3 views

kernel: media: rc: fix races with imon_disconnect()

A use-after-free flaw exists in the Linux kernel’s media/rc subsystem. When the device is disconnected via imondisconnect, the driver may unconditionally release a usbdevice reference via usbputdev even while other operations such as vfdwrite, sendpacket, displayopen, lcdwrite are still in...

5.8AI score0.00213EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/03 8:57 p.m.13 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.7AI score0.00517EPSS
Exploits3References10
RedHat Linux
RedHat Linux
added 2026/01/28 7:17 p.m.3 views

kernel: media: rc: fix races with imon_disconnect()

A use-after-free flaw exists in the Linux kernel’s media/rc subsystem. When the device is disconnected via imondisconnect, the driver may unconditionally release a usbdevice reference via usbputdev even while other operations such as vfdwrite, sendpacket, displayopen, lcdwrite are still in...

5.8AI score0.00213EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/28 12:42 a.m.5 views

kernel: media: rc: fix races with imon_disconnect()

A use-after-free flaw exists in the Linux kernel’s media/rc subsystem. When the device is disconnected via imondisconnect, the driver may unconditionally release a usbdevice reference via usbputdev even while other operations such as vfdwrite, sendpacket, displayopen, lcdwrite are still in...

5.8AI score0.00213EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/28 12:33 a.m.2 views

kernel: media: rc: fix races with imon_disconnect()

A use-after-free flaw exists in the Linux kernel’s media/rc subsystem. When the device is disconnected via imondisconnect, the driver may unconditionally release a usbdevice reference via usbputdev even while other operations such as vfdwrite, sendpacket, displayopen, lcdwrite are still in...

5.8AI score0.00213EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/28 12:0 a.m.7 views

RHEL 8 : kernel (RHSA-2026:1512)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1512 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: e1000e: fix heap overflow in...

7.1AI score0.00319EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.5 views

AlmaLinux 8 : kernel (ALSA-2026:0444)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:0444 advisory. kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing CVE-2025-40240...

7.4AI score0.00213EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2026/01/17 9:3 a.m.9 views

kernel-rt security update

An update is available for kernel-rt. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel-rt packages provide the Real Time Linux Kernel, which enables...

7AI score0.00213EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/17 12:0 a.m.5 views

RockyLinux 8 : kernel-rt (RLSA-2026:0443)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0443 advisory. kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing CVE-2025-40240...

7.3AI score0.00213EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.12 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-1091)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : net: drop UFO packets in udprcvsegmentCVE-2025-38622 A transient execution vulnerability in some AMD processors may allow an attacker to infer dat...

7.8CVSS7.3AI score0.00331EPSS
Exploits2References110
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.2 views

RHEL 8 : kernel-rt (RHSA-2026:0443)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0443 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

7.3AI score0.00213EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

RHEL 8 : kernel (RHSA-2026:0444)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0444 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: rc: fix races with...

7.1AI score0.00213EPSS
Exploits0References8
OSV
OSV
added 2026/01/12 12:0 a.m.4 views

ALSA-2026:0443 Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing...

7.1AI score0.00213EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2026/01/12 12:0 a.m.9 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing...

7.3AI score0.00213EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2026/01/12 12:0 a.m.5 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing CVE-2025-40240 kernel: libceph: fix potential use-after-free...

7.1AI score0.00213EPSS
Exploits0References8
OSV
OSV
added 2026/01/12 12:0 a.m.7 views

ALSA-2026:0444 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing CVE-2025-40240 kernel: libceph: fix potential use-after-free...

6.9AI score0.00213EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2025/10/16 11:24 p.m.2 views

SUSE CVE-2025-39993

In the Linux kernel, the following vulnerability has been resolved: media: rc: fix races with imondisconnect Syzbot reports a KASAN issue as below: BUG: KASAN: use-after-free in createpipe include/linux/usb.h:1945 inline BUG: KASAN: use-after-free in sendpacket+0xa2d/0xbc0...

5.5CVSS6.2AI score0.00213EPSS
Exploits0References20
Microsoft CVE
Microsoft CVE
added 2025/10/16 1:2 a.m.2 views

media: rc: fix races with imon_disconnect()

...

7AI score0.00213EPSS
Exploits0
EUVD
EUVD
added 2025/10/15 9:30 a.m.2 views

EUVD-2025-34580

In the Linux kernel, the following vulnerability has been resolved: media: rc: fix races with imondisconnect Syzbot reports a KASAN issue as below: BUG: KASAN: use-after-free in createpipe include/linux/usb.h:1945 inline BUG: KASAN: use-after-free in sendpacket+0xa2d/0xbc0...

5.8AI score0.00213EPSS
Exploits0References7
CVE
CVE
added 2025/10/15 7:58 a.m.21 views

CVE-2025-39993

CVE-2025-39993 affects the Linux kernel under the media: rc subsystem, specifically the imon_disconnect path that can race with ongoing operations. The root cause is improper synchronization around usb_device references (usbdev_intf0/usbdev_intf1) during disconnect, leading to a use-after-free wh...

5.9AI score0.00213EPSS
Exploits0References9
Rows per page
Query Builder