8 matches found
UBUNTU-CVE-2026-53150
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Reject zero-length property entries in validator tbpropertyentryvalid accepts entries with length == 0 for DIRECTORY, DATA, and TEXT types. A zero-length TEXT entry passes validation but causes an underflow in the...
CVE-2026-53150
CVE-2026-53150 affects the Linux kernel Thunderbolt validator. The bug arises when tb_property_entry_valid() accepts zero-length TEXT entries for DIRECTORY/DATA/TEXT, enabling a null-termination underflow (writes at property->value.text[length*4 - 1] with length 0). A fix rejects zero-length e...
CVE-2026-53150
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Reject zero-length property entries in validator tbpropertyentryvalid accepts entries with length == 0 for DIRECTORY, DATA, and TEXT types. A zero-length TEXT entry passes validation but causes an underflow in the...
PT-2026-52246
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the thunderbolt component where the tb property entry valid function accepts entries with a length of 0 for DIRECTORY, DATA, and TEXT types. A zero-length TEXT entry...
CVE-2026-43082 net: txgbe: leave space for null terminators on property_entry
In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on propertyentry Lists of struct propertyentry are supposed to be terminated with an empty property, this driver currently seems to be allocating exactly the amount of entry used. Chan...
EUVD-2025-27910
Malicious code in bioql PyPI...
DEBIAN-CVE-2025-38573
In the Linux kernel, the following vulnerability has been resolved: spi: cs42l43: Property entry should be a null-terminated array The software node does not specify a count of property entries, so the array must be null-terminated. When unterminated, this can lead to a fault in the downstream...
CVE-2025-38573 spi: cs42l43: Property entry should be a null-terminated array
In the Linux kernel, the following vulnerability has been resolved: spi: cs42l43: Property entry should be a null-terminated array The software node does not specify a count of property entries, so the array must be null-terminated. When unterminated, this can lead to a fault in the downstream...