Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: fixed potential NULL pointer dereferencing in ncmbitrate In Google’s internal bug report 265639009, we received a crash report from a aarch64 GKI 5.10.149-android13 running device. This report is currently...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986530)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986530 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: fix potential NULL ptr deref in ncmbitrate In Google internal bug 265639009...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986632)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986632 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: fix potential NULL ptr deref in ncmbitrate In Google internal bug 265639009...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986807)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986807 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: fix potential NULL ptr deref in ncmbitrate In Google internal bug 265639009...

The vulnerability of the f_ncm component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the fncm component in the Linux operating system’s kernel is related to the assignment of NULL pointers in the ncmbitrate function. Exploiting this vulnerability can allow an attacker to cause a service failure...

SUSE CVE-2023-52894

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: fix potential NULL ptr deref in ncmbitrate In Google internal bug 265639009 we've received an as yet unreproducible crash report from an aarch64 GKI 5.10.149-android13 running device. AFAICT the source code is...

PT-2023-35033 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.8 Description: A potential NULL pointer dereference issue exists in the ncm bitrate function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

PT-2023-34911 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.304 Description: A potential NULL pointer dereference issue exists in the ncm bitrate function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel version...

PT-2023-9443 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.10.149-android13 Description: The vulnerability is related to a potential NULL pointer dereference in the ncm bitrate function. This issue can cause a crash when the cdev-gadget pointer is NULL, leading to a...