14 matches found
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba This vulnerability was discovered by Atuin – the Automated Vulnerability Discovery Engine. newpba is a value derived from the status packet returned after each write operation. A...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012979)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012979 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability...
usb: storage: sddr55: Reject out-of-bound new_pba
...
SUSE CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
AZL-72332 CVE-2025-40345 affecting package kernel for versions less than 6.6.119.3-1
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
UBUNTU-CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
CVE-2025-40345 usb: storage: sddr55: Reject out-of-bound new_pba
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
CVE-2025-40345
CVE-2025-40345 affects Linux kernel USB storage for the sddr55, where new_pba values from the status packet could exceed the computed block count, causing the driver to walk past pba_to_lba[] and corrupt heap memory. The fix rejects PBAs that exceed the block count and fails the transfer to avoid...
CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
CVE-2025-40345 usb: storage: sddr55: Reject out-of-bound new_pba
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned after each write. A bogus device could report values beyond the block...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the sddr55 driver rejecting an out-of-range newpba, which could lead to heap memory corruption...
Linux Distros Unpatched Vulnerability : CVE-2025-40345
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: storage: sddr55: Reject out-of-bound newpba Discovered by Atuin - Automated Vulnerability Discovery Engine. newpba comes from the status packet returned...
PT-2025-50962
Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel USB storage SDDR55 driver contains a flaw where out-of-bound new pba values can be accepted from a malicious device. This occurs because the driver does not properly...