Lucene search
K

30 matches found

SUSE CVE
SUSE CVE
added 2026/05/29 1:16 a.m.10 views

SUSE CVE-2026-46146

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Avoid potential endless loop in convertchmapv3 The convertchmapv3 has a loop with its increment size of csdesc-wLength, but we forgot to validate csdesc-wLength itself, which may lead to potential endless loop by...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/28 6:39 p.m.13 views

CVE-2026-46146

A flaw was found in the Linux kernel's ALSA Advanced Linux Sound Architecture usb-audio subsystem. This vulnerability exists in the convertchmapv3 function, where the csdesc-wLength value is not properly validated. A malicious actor could provide a specially crafted, malformed USB audio descripto...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.18 views

PT-2026-44269

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the ALSA usb-audio component within the convert chmap v3 function. The function contains a loop that uses the cs desc-wLength variable to determine the increment size...

9.8CVSS6AI score0.03663EPSS
Exploits11References293
OSV
OSV
added 2026/05/27 2:16 p.m.9 views

DEBIAN-CVE-2026-23679

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

5.5CVSS5.9AI score0.00184EPSS
Exploits0References1
OSV
OSV
added 2026/05/27 2:16 p.m.9 views

UBUNTU-CVE-2026-23679

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

6.9CVSS5.9AI score0.00184EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/27 1:21 p.m.9 views

CVE-2026-23679 libusb < 1.0.30 NULL Pointer Dereference in parse_interface()

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

6.9CVSS5.9AI score0.00184EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/08 3:31 p.m.10 views

EUVD-2026-28742

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces The Scarlett2 mixer quirk in USB-audio driver may hit a NULL dereference when a malformed USB descriptor is passed, since it assumes the presence of an...

5.8AI score0.00123EPSS
Exploits0References7
OSV
OSV
added 2026/05/08 3:16 p.m.4 views

UBUNTU-CVE-2026-43436

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces The Scarlett2 mixer quirk in USB-audio driver may hit a NULL dereference when a malformed USB descriptor is passed, since it assumes the presence of an...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-2420

Malware in sbrugna...

5CVSS6.1AI score0.02517EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-17763

Malware in sbrugna...

7.5CVSS7.8AI score0.01699EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3014

Malware in sbrugna...

7.5CVSS7.6AI score0.01161EPSS
Exploits0References6
CVE
CVE
added 2025/08/06 7:26 a.m.23 views

CVE-2025-27065

CVE-2025-27065 is described across multiple feeds as a transient DoS in WLAN firmware caused by a buffer over-read when processing a frame with a malformed shared-key descriptor. Affected component: Qualcomm closed‑source WLAN firmware. The CVE is listed with high severity and indicates a DoS out...

7.5CVSS6.6AI score0.00193EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/06 12:0 a.m.9 views

PT-2025-32131 · Realtek · Realtek Wi-Fi

Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: A transient Denial-of-Service DoS condition may occur when processing a frame containing a malformed shared-key descriptor. Recommendations: At the moment, there is no information about a newer...

7.5CVSS6.2AI score0.00193EPSS
Exploits0References5
NVD
NVD
added 2024/09/04 7:15 p.m.13 views

CVE-2024-44960

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a null pointer panic in this case. This may happen if the gadget doesn't properly set up the endpoint for...

5.5CVSS0.00232EPSS
Exploits0References13
OSV
OSV
added 2023/07/31 5:15 p.m.4 views

DEBIAN-CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS4.9AI score0.00516EPSS
Exploits1References1
OSV
OSV
added 2023/07/31 5:15 p.m.3 views

UBUNTU-CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS5.8AI score0.00516EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2023/07/31 4:22 p.m.13 views

CVE-2023-4010 Kernel: usb: hcd: malformed usb descriptor leads to infinite loop in usb_giveback_urb()

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS7AI score0.00516EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/07/30 12:0 a.m.7 views

PT-2023-4073

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb giveback urb function has a logic loophole in its implementation, causing it to fall into an...

4.9CVSS5.5AI score0.00516EPSS
Exploits1References25
SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.5 views

SUSE CVE-2015-2929

The Hidden Service HS client implementation in Tor before 0.2.4.27, 0.2.5.x before 0.2.5.12, and 0.2.6.x before 0.2.6.7 allows remote servers to cause a denial of service assertion failure and application exit via a malformed HS descriptor...

7.5CVSS8.9AI score0.01161EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:4 a.m.3 views

SUSE CVE-2016-3951

Double free vulnerability in drivers/net/usb/cdcncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service system crash or possibly have unspecified other impact by inserting a USB device with an invalid USB descriptor...

4.6CVSS8.2AI score0.00586EPSS
Exploits0References8
Rows per page
Query Builder