CVE-2024-57993 HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check

In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: Fix warning in thrustmasterprobe by adding endpoint check syzbot has found a type mismatch between a USB pipe and the transfer endpoint, which is triggered by the hid-thrustmaster driver1. There is a number...

CVE-2024-57993

CVE-2024-57993 (Linux kernel) affects the HID thrustmaster driver. The issue arose from a type mismatch between a USB pipe and the transfer endpoint triggered by the hid-thrustmaster driver. A patch was applied to thrustmaster_probe that adds an endpoint type check to fix this warning. The vulner...

CVE-2024-57993 HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check

In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: Fix warning in thrustmasterprobe by adding endpoint check syzbot has found a type mismatch between a USB pipe and the transfer endpoint, which is triggered by the hid-thrustmaster driver1. There is a number...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to perform a boundary check on the pipe variable in the ncihcicreatepipe function, which could lea...

DEBIAN-CVE-2022-49490

In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5piperelease when deadlock is detected mdp5getglobalstate runs the risk of hitting a -EDEADLK when acquiring the modeset lock, but currently mdp5piperelease doesn't check for if an error is...

DEBIAN-CVE-2022-49397

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix struct clk leak on probe errors Make sure to release the pipe clock reference in case of a late probe error e.g. probe deferral...

UBUNTU-CVE-2022-49397

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix struct clk leak on probe errors Make sure to release the pipe clock reference in case of a late probe error e.g. probe deferral...

UBUNTU-CVE-2022-49490

In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5piperelease when deadlock is detected mdp5getglobalstate runs the risk of hitting a -EDEADLK when acquiring the modeset lock, but currently mdp5piperelease doesn't check for if an error is...

DEBIAN-CVE-2022-49151

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: properly check endpoint type Syzbot reported warning in usbsubmiturb which is caused by wrong endpoint type. We should check that in endpoint is actually present to prevent this warning. Found pipes are now saved to...

CVE-2022-49490 drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected

In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5piperelease when deadlock is detected mdp5getglobalstate runs the risk of hitting a -EDEADLK when acquiring the modeset lock, but currently mdp5piperelease doesn't check for if an error is...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from phy: qcom-qmp not releasing a pipe clock reference when detecting an error...

CVE-2024-40586

An Improper Access Control vulnerability CWE-284 in FortiClient Windows version 7.4.0, version 7.2.6 and below, version 7.0.13 and below may allow a local user to escalate his privileges via FortiSSLVPNd service pipe...

Botan C++ Crypto Algorithms Library 3.7.1

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS 10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to...

drm/amd/display: Fix null check for pipe_ctx->plane_state in hwss_setup_dpp

...

PT-2025-8847

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory corruption issue exists due to insufficient bounds checking in the nci hci create pipe function. The pipe variable, which is a u8 value coming from the network, can cause memory...

CVE-2024-50564

A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all versions, 7.0.x all versions, and 6.4.x all versions may allow a low-privileged user to decrypt interprocess communication via monitoring named piped...

Fortinet FortiClient Hardcoded Encryption Key Used for Named Pipe Communication (FG-IR-24-216)

The version of FortiClient installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-216 advisory. - Threat actors can gain access to a plain text encryption key that is saved as part of the FortiClient services executable...

CLSA-2025-1736470534 Fix of 32 CVEs

CVE-url: https://ubuntu.com/security/CVE-2021-47466 - mm, slub: fix potential memoryleak in kmemcacheopen CVE-url: https://ubuntu.com/security/CVE-2024-36968 - Bluetooth: L2CAP: Fix div-by-zero in l2capleflowctlinit Bionic update: upstream stable patchset 2021-06-23 LP: 1933375 // CVE- url:...

PT-2025-8780

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A type mismatch between a USB pipe and the transfer endpoint has been found in the hid-thrustmaster driver. This issue is triggered by the hid-thrustmaster driver and can be fixed by...

PT-2025-37958

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ftrace subsystem. A race condition can occur when calling ftrace dump one concurrently with reading trace pipe, potentially triggering a warni...