13 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004135)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004135 advisory. In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003721)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003721 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003719)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003719 advisory. An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000237)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000237 advisory. An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the...
PT-2024-3923 · Microsoft · Windows Mobile Broadband Driver +1
Name of the Vulnerable Software and Affected Versions: Windows Mobile Broadband Driver affected versions not specified Description: The issue is related to insufficient input validation in the Windows Mobile Broadband Driver, which can be exploited by connecting a malicious USB device, allowing a...
The vulnerability of the HID subsystem (drivers/hid/hid-core.c) in the Linux kernel allows a attacker to cause an application to crash or increase their privileges.
The vulnerability of the HID subsystem drivers/hid/hid-core.c in the Linux kernel is related to memory corruption caused by a user using a malicious USB device. Exploiting this vulnerability can allow an attacker to cause an application to crash or increase their privileges...
SUSE CVE-2019-15223
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/driver.c driver...
SUSE CVE-2019-19536
In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peakusb/pcanusbpro.c driver, aka CID-ead16e53c2f0...
PT-2023-1656 · Linux +6 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory corruption flaw was found in the Linux kernel’s human interface device HID subsystem. This issue arises when a user inserts a malicious USB device, allowing a local user to...
UBUNTU-CVE-2022-20132
In lgprobe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges needed. User...
kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver
A vulnerability was found in hiddevopen in drivers/hid/usbhid/hiddev.c in the USB Human Interface Device class subsystem, where an existing device must be validated prior to its access. The device should also ensure the hiddevlist cleanup occurs at failure, as this may lead to a use-after-free...
kernel: malicious USB devices can lead to multiple out-of-bounds write
An out-of-bounds write flaw was found in the Linux kernel’s HID drivers. An attacker, able to plug in a malicious USB device, can crash the system or read and write to memory with an incorrect address...
UBUNTU-CVE-2019-15218
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver...