Lucene search
K

146 matches found

vulnrichment
vulnrichment
added 2024/11/05 5:7 p.m.3 views

CVE-2024-50100 USB: gadget: dummy-hcd: Fix "task hung" problem

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: dummy-hcd: Fix "task hung" problem The syzbot fuzzer has been encountering "task hung" problems ever since the dummy-hcd driver was changed to use hrtimers instead of regular timers. It turns out that the problems ar...

7.6AI score0.00233EPSS
Exploits0References4
redhat
redhat
added 2024/10/30 1:41 a.m.16 views

kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages

A vulnerability was found in the Linux kernel's CDC WDM driver, where excessive logging in the interrupt-URB completion callback could lead to CPU lockups, which occurs when the driver rapidly resubmits interrupt URBs after receiving a -EPROTO status, causing a backlog of error messages that...

5.5CVSS6.8AI score0.00294EPSS
Exploits0References5
redhat
redhat
added 2024/09/24 2:39 a.m.5 views

No title provided

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: prevent potential failure in handletxevent for Transfer events without TRB Some transfer events don't always point to a TRB, and consequently don't have a endpoint ring. In these cases, function handletxevent should no...

6.4AI score
Exploits0References2
redhat
redhat
added 2024/09/24 12:40 a.m.13 views

kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages

A vulnerability was found in the Linux kernel's CDC WDM driver, where excessive logging in the interrupt-URB completion callback could lead to CPU lockups, which occurs when the driver rapidly resubmits interrupt URBs after receiving a -EPROTO status, causing a backlog of error messages that...

5.5CVSS6.8AI score0.00294EPSS
Exploits0References5
cnnvd
cnnvd
added 2024/08/21 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in the nfc/pn533 component when processing urb completion...

5.5CVSS6.5AI score0.00233EPSS
Exploits0References10
cnnvd
cnnvd
added 2024/07/29 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a vulnerability due to incomplete USB endpoint checking that could result in the wrong endpoint type being use...

5.5CVSS6.4AI score0.00234EPSS
Exploits0References9
susecve
susecve
added 2024/06/22 3:35 a.m.12 views

SUSE CVE-2024-38567

In the Linux kernel, the following vulnerability has been resolved: wifi: carl9170: add a proper sanity check for endpoints Syzkaller reports 1 hitting a warning which is caused by presence of a wrong endpoint type at the URB sumbitting stage. While there was a check for a specific 4th endpoint,...

5.5CVSS6.3AI score0.00254EPSS
Exploits0References16
osv
osv
added 2024/06/20 12:15 p.m.2 views

DEBIAN-CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS5.5AI score0.00186EPSS
Exploits0References1
redhat
redhat
added 2024/06/05 12:36 a.m.3 views

kernel: xhci: handle isoc Babble and Buffer Overrun events properly

A flaw was found in the Linux kernel related to the Extensible Host Controller Interface xHCI subsystem, specifically how it handles certain events. The issue arises when the xHCI driver improperly handles isochronous isoc Babble and Buffer Overrun events. The vulnerability occurs because the xHC...

5.5CVSS7.1AI score0.0023EPSS
Exploits0References5
susecve
susecve
added 2024/05/29 2:18 p.m.5 views

SUSE CVE-2023-52855

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency In dwc2hcdurbenqueue, "urb-hcpriv = NULL" is executed without holding the lock "hsotg-lock". In dwc2hcdurbdequeue: spinlockirqsave&hsotg-lock, flags;...

5.5CVSS6.6AI score0.00245EPSS
Exploits0References18
osv
osv
added 2024/02/27 7:4 p.m.11 views

UBUNTU-CVE-2021-46963

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash in qla2xxxmqueuecommand RIP: 0010:kmemcachefree+0xfa/0x1b0 Call Trace: qla2xxxmqueuecommand+0x2b5/0x2c0 qla2xxx scsiqueuerq+0x5e2/0xa40 blkmqtryissuedirectly+0x128/0x1d0 blkmqrequestissuedirectly+0x4e/0xb...

5.5CVSS6.2AI score0.00236EPSS
Exploits0References9
mscve
mscve
added 2023/08/10 7:0 a.m.10 views

Kernel: smsusb: use-after-free caused by do_submit_urb()

...

5.5CVSS7.3AI score0.00255EPSS
Exploits0
susecve
susecve
added 2023/02/15 6:17 a.m.3 views

SUSE CVE-2005-3055

Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service kernel OOPS via a userspace process that issues a USB Request Block URB to a USB device and terminates before the URB is finished, which leads to a stale pointer reference...

2.1CVSS6.4AI score0.00452EPSS
Exploits0References5
susecve
susecve
added 2023/02/15 6:6 a.m.2 views

SUSE CVE-2008-4680

packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service application crash or abort via a malformed USB Request Block URB...

4.3CVSS6.9AI score0.02785EPSS
Exploits1References5
susecve
susecve
added 2023/02/15 4:6 a.m.2 views

SUSE CVE-2019-19078

A memory leak in the ath10kusbhiftxsg function in drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption by triggering usbsubmiturb failures, aka CID-b8d17e7d93d2...

4.6CVSS6.4AI score0.06623EPSS
Exploits0References9
susecve
susecve
added 2023/02/15 3:57 a.m.3 views

SUSE CVE-2020-14394

An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block TRB Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service...

3.2CVSS6.5AI score0.00363EPSS
Exploits1References7
zdi
zdi
added 2022/10/21 12:0 a.m.30 views

Oracle VirtualBox VRDP Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Oracle VirtualBox. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of USB Request Block messages. The issue results from the lack of proper...

8.1CVSS3.4AI score0.01635EPSS
Exploits0References1
osv
osv
added 2022/08/17 9:15 p.m.3 views

DEBIAN-CVE-2020-14394

An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block TRB Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service...

3.2CVSS5.1AI score0.00363EPSS
Exploits1References1
myhack58
myhack58
added 2019/08/27 12:0 a.m.161 views

2019 Pwn2Own for compromised VMware virtual machine escape vulnerability analysis-vulnerability warning-the black bar safety net

At this year's Vancouver Pwn2Own contest during Fluoroacetate team shows them through the use of VMware Workstation from the client virtual machine to escape to the physical machine. They use the virtual USB 1.1 UHCI postage host controller interface in the cross-border read/write vulnerabilities...

0.6AI score
Exploits0
redhat
redhat
added 2009/03/04 7:23 p.m.7 views

wireshark: DoS (app crash or abort) via malformed USB Request Block (URB).

packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service application crash or abort via a malformed USB Request Block URB...

4.3CVSS5.9AI score0.02785EPSS
Exploits1References4
Rows per page
Query Builder