Lucene search
K

40 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handling cameras with invalid descriptors If the source entity does not contain any pads, do not create a link...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References2
CVE
CVE
added 2026/05/08 1:11 p.m.19 views

CVE-2026-43290

Summary (CVE-2026-43290) A flaw in the Linux kernel's media subsystem (uvcvideo) can occur when start_streaming() fails due to an error in uvc_pm_get(), causing queued buffers to not be returned. The issue can lead to system instability or a denial of service by triggering a USB host controller f...

7.8CVSS5.7AI score0.00128EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/08 1:11 p.m.8 views

CVE-2026-43290

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Return queued buffers on startstreaming failure Return buffers if streaming fails to start due to uvcpmget error. This bug may be responsible for a warning I got running while :; do yavta -c3 /dev/video0; done on...

7.8CVSS5.7AI score0.00128EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/23 10:51 a.m.4 views

Security Bulletin: Vulnerabilities in kernel affects IBM Netezza Appliance

Summary The kernel package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2024-58002, CVE-2025-38089 Vulnerability Details CVEID:CVE-2024-58002 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Remove...

7.8CVSS5.6AI score0.00271EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.7 views

Oracle Linux 10 : kernel (ELSA-2026-6632)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6632 advisory. - net/mlx5: Fix ECVF vports unload on shutdown flow CKI Backport Bot RHEL-154540 CVE-2025-38109 - mm/damon/sysfs: cleanup attrs subdirs on context dir...

8.8CVSS5.9AI score0.0024EPSS
Exploits0References8
OSV
OSV
added 2026/02/14 2:2 p.m.35 views

CLSA-2026-1771077729 kernel: Fix of 107 CVEs

net/ieee802154: don't warn zero-sized rawsendmsg CVE-2022-50706 - bpf: Don't redirect packets with invalid pktlen CVE-2022-49975 - media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat CVE-2025-38680 - ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network...

7.8CVSS7.1AI score0.00319EPSS
Exploits0References1
CVE
CVE
added 2025/12/30 12:23 p.m.14 views

CVE-2022-50882

CVE-2022-50882 affects the Linux kernel's media: uvcvideo component. The root cause was a memory/resource leak where the unit buffer was allocated before validating the privacy GPIO IRQ. The fix postpones allocating the unit buffer until after the IRQ check, preventing leaks. Impact is described ...

6.3AI score0.00168EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/30 12:23 p.m.33 views

CVE-2022-50882 media: uvcvideo: Fix memory leak in uvc_gpio_parse

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix memory leak in uvcgpioparse Previously the unit buffer was allocated before checking the IRQ for privacy GPIO. In case of error, the unit buffer was leaked. Allocate the unit buffer after the IRQ to avoid it...

0.00168EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992394)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992394 advisory. In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handle cameras with invalid descriptors If the source entity does not contain an...

5.5CVSS6.5AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992191)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992191 advisory. In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handle cameras with invalid descriptors If the source entity does not contain an...

5.5CVSS6.5AI score0.00136EPSS
Exploits0References4
OSV
OSV
added 2025/10/04 12:11 a.m.11 views

RLSA-2025:11861 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: uvcvideo: Fix double free in error path CVE-2024-57980 kernel: wifi: iwlwifi: limit printed string from FW file CVE-2025-21905 kernel: RDMA/mlx5: Fix pagesize variable overflow...

7.1CVSS7AI score0.00245EPSS
Exploits0References11
OSV
OSV
added 2025/10/04 12:11 a.m.15 views

RLSA-2025:11411 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: uvcvideo: Remove dangling pointers CVE-2024-58002 kernel: sunrpc: handle SVCGARBAGE during svc auth processing as auth error CVE-2025-38089 For more details about the security...

7.1CVSS6.4AI score0.00271EPSS
Exploits2References3
OSV
OSV
added 2025/10/03 7:56 p.m.6 views

RLSA-2025:11428 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: uvcvideo: Remove dangling pointers CVE-2024-58002 kernel: media: uvcvideo: Fix double free in error path CVE-2024-57980 kernel: wifi: iwlwifi: limit printed string from FW file...

7.1CVSS6.5AI score0.00271EPSS
Exploits2References6
OSV
OSV
added 2025/09/18 4:15 p.m.5 views

UBUNTU-CVE-2023-53437

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handle cameras with invalid descriptors If the source entity does not contain any pads, do not create a link...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/09/18 4:4 p.m.7 views

CVE-2023-53437 media: uvcvideo: Handle cameras with invalid descriptors

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handle cameras with invalid descriptors If the source entity does not contain any pads, do not create a link...

0.00136EPSS
Exploits0References8
CVE
CVE
added 2025/09/18 4:4 p.m.23 views

CVE-2023-53437

CVE-2023-53437 affects the Linux kernel media: uvcvideo driver. The vulnerability arises when handling cameras with invalid descriptors, potentially enabling local attacker access due to improper link handling when a source entity has no pads. Public docs (OpenVAS/Nessus summaries) list updates t...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/09/18 12:0 a.m.9 views

Oracle Linux 7 : kernel (ELSA-2025-14748)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-14748 advisory. - kernel: media: uvcvideo: Fix double free in error path CVE-2024-57980 - kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtphidremove...

7.8CVSS6.9AI score0.00245EPSS
Exploits0References10
Oracle linux
Oracle linux
added 2025/09/17 12:0 a.m.16 views

kernel security update

3.10.0-1160.119.1.0.11.el7.OL7 - kernel: media: uvcvideo: Fix double free in error path CVE-2024-57980 - kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtphidremove CVE-2025-21928 - kernel: ext4: fix off-by-one error in dosplit CVE-2025-23150 - kernel: misc/vmwvmci: fix an infoleak in...

7.8CVSS7.2AI score0.00245EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.13 views

RHEL 9 : kernel (RHSA-2025:13781)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:13781 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: uvcvideo: Remove...

7.8CVSS7AI score0.00229EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.5 views

RHEL 9 : kernel-rt (RHSA-2025:13633)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:13633 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism...

7.8CVSS7.2AI score0.00229EPSS
Exploits0References21
Rows per page
Query Builder