Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will return a node pointer with the refcount incremented. We should use ofnodeput when it is no longer needed...

Medium: qemu

Issue Overview: hcd-ohci: infinite loop NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/129922c2bc398b656a9180150e667f98fdf0d402 v11.0.0-rc1 CVE-2026-3890 virtio-scsi request size mismatch NOTE: Fixed by:...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-tmio: check return value after calling platformgetresource This vulnerability could lead to a null-ptr-deref error if platformgetresource returns NULL. Therefore, we need to check the return value of this function...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Firewire: ohci: prevents leakage of leftover IRQs when unbinding The commit 5a95f1ded28691e6 “Firewire: ohci: uses a devres for the requested IRQ” also removed the call to freeirq in pciremove. This resulted in a leftover IRQ...

Astra Linux – Vulnerability in Qemu

In QEMU 5.0.0, the file hw/usb/hcd-ohci.c contains a stack-based buffer over-read issue, caused by values obtained from the host controller driver...

Astra Linux – Vulnerability in Qemu

In QEMU 5.0.0, the hw/usb/hcd-ohci.c file contains an infinite loop when a TD list has a loop...

CVE-2026-3890

hcd-ohci: infinite loop...

UBUNTU-CVE-2026-3890

hcd-ohci: infinite loop...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011115)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011115 advisory. In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: disable RAC flush for TP1 RAC flush causes kernel panics on BCM6358 with...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004847)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004847 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004918)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004918 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: ohci-nxp: Fix refcount leak in ohcihcdnxpprobe ofparsephandle returns a node pointer with...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-35816)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35816 advisory. - In the Linux kernel, the following vulnerability has been resolved: firewire: ohci: prevent leak of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993055)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993055 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: ohci-nxp: Fix refcount leak in ohcihcdnxpprobe ofparsephandle returns a node pointer with...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993069 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992495)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992495 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992361)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992361 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: ohci-nxp: Fix refcount leak in ohcihcdnxpprobe ofparsephandle returns a node pointer with...

CVE-2023-53986

In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: disable RAC flush for TP1 RAC flush causes kernel panics on BCM6358 with EHCI/OHCI when booting from TP1: 3.881739 usb 1-1: new high-speed USB device number 2 using ehci-platform 3.895011 Reserved instructio...

CVE-2023-53986

CVE-2023-53986 affects the Linux kernel on mips/bmips BCM6358. The root cause is how RAC (Read-Ahead Cache) flush is handled for TP1 boot threads; disabling RAC flush prevents kernel panics in EHCI/OHCI during TP1 boot, described as a resolved vulnerability in multiple feeds. The description in t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990466)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990466 advisory. In the Linux kernel, the following vulnerability has been resolved: firewire: ohci: mask bus reset interrupts between ISR and bottom half In the FireWire OHCI...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989376)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989376 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-tmio: check return value after calling platformgetresource It will cause...