32 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hciqca: Fixed the driver shutdown when the serdev is closed. The driver shutdown callback which sends EDLSOCRESET to the device via serdev should not be invoked when the HCI device is not open e.g., if hcidevopensyn...
Qualcomm Atheros Coex Service Application code-related vulnerabilities
Qualcomm Atheros Coex Service Application is a hardware management driver software developed by Qualcomm Corporation in the United States. Version 8.0.0.255 of Qualcomm Atheros Coex Service Application contains a code vulnerability. This vulnerability stems from a service path that lacks quotatio...
UBUNTU-CVE-2023-54300
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: avoid referencing uninit memory in ath9kwmictrlrx For the reasons also described in commit b383e8abed41 "wifi: ath9k: avoid uninit memory read in ath9khtcrxmsg", ath9khtcrxmsg should validate pktlen before accessing...
EUVD-2018-1072
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987045)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987045 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends...
kernel: wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi
A flaw was discovered in the Linux kernel's driver for Qualcomm Atheros Wi-fi 7 driver ath12k. An attacker with the ability to generate real or simulated network traffic could exploit this vulnerability to modify kernel memory, leading to a denial of service, compromised system integrity, or an...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the btusb module incorrectly returning a 0 when processing a QCA firmware crash dump, which could result in ...
SUSE CVE-2022-49692
In the Linux kernel, the following vulnerability has been resolved: net: phy: at803x: fix NULL pointer dereference on AR9331 PHY Latest kernel will explode on the PHY interrupt config, since it depends now on allocated priv. So, run probe to allocate priv to fix it. ar9331switch ethernet.1:10 lan...
CVE-2022-49692
In the Linux kernel, the following vulnerability has been resolved: net: phy: at803x: fix NULL pointer dereference on AR9331 PHY Latest kernel will explode on the PHY interrupt config, since it depends now on allocated priv. So, run probe to allocate priv to fix it. ar9331switch ethernet.1:10 lan...
CVE-2022-49692 net: phy: at803x: fix NULL pointer dereference on AR9331 PHY
In the Linux kernel, the following vulnerability has been resolved: net: phy: at803x: fix NULL pointer dereference on AR9331 PHY Latest kernel will explode on the PHY interrupt config, since it depends now on allocated priv. So, run probe to allocate priv to fix it. ar9331switch ethernet.1:10 lan...
CVE-2022-49692 net: phy: at803x: fix NULL pointer dereference on AR9331 PHY
In the Linux kernel, the following vulnerability has been resolved: net: phy: at803x: fix NULL pointer dereference on AR9331 PHY Latest kernel will explode on the PHY interrupt config, since it depends now on allocated priv. So, run probe to allocate priv to fix it. ar9331switch ethernet.1:10 lan...
CVE-2022-49692
The CVE-2022-49692 issue is a Linux kernel fix for the at803x PHY NULL pointer dereference on AR9331 PHY. The vulnerability manifested as kernel paging fault during PHY interrupt handling, traced to AR9331 switch/MDIO initialization and phylink/dsa probe paths. The remedy is in the latest kernel ...
CVE-2022-49692
In the Linux kernel, the following vulnerability has been resolved: net: phy: at803x: fix NULL pointer dereference on AR9331 PHY Latest kernel will explode on the PHY interrupt config, since it depends now on allocated priv. So, run probe to allocate priv to fix it. ar9331switch ethernet.1:10 lan...
OESA-2024-2445 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when...
SUSE CVE-2022-48878
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when HCI device is not open e.g. if hcidevopensync failed, because the...
CVE-2022-48878
A vulnerability was found in the Linux kernel's bluetooth driver hciqca.c. If the driver's shutdown callback is invoked while the HCI device is not open, it may cause a use-after-free situation and potentially lead to a kernel panic during system reboot. Mitigation Mitigation for this issue is...
DEBIAN-CVE-2022-48878
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when HCI device is not open e.g. if hcidevopensync failed, because the...
CVE-2022-48878 Bluetooth: hci_qca: Fix driver shutdown on closed serdev
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when HCI device is not open e.g. if hcidevopensync failed, because the...
CVE-2022-48878 Bluetooth: hci_qca: Fix driver shutdown on closed serdev
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when HCI device is not open e.g. if hcidevopensync failed, because the...
CVE-2022-48878
CVE-2022-48878 affects the Linux kernel Bluetooth stack (hci_qca) and the serdev shutdown path. The issue arises when the HCI device is not open (e.g., hci_dev_open_sync() failed) and the shutdown callback may still attempt to send EDL_SOC_RESET over serdev, potentially triggering a use-after-fre...