15 matches found
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fixed a use-after-free in sndusbmixerfree When sndusbcreatemixer fails, sndusbmixerfree frees mixer-idelems, but the controls that were previously added to the card still reference the freed memory. Later, when...
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011287)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011287 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL pointer dereference in sndusbmixercontrolsbadd In sndusbcreatestreams,...
CVE-2026-23089 ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free()
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix use-after-free in sndusbmixerfree When sndusbcreatemixer fails, sndusbmixerfree frees mixer-idelems but the controls already added to the card still reference the freed memory. Later when sndcardregister runs...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004147)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004147 advisory. An issue was discovered in the Linux kernel before 4.20.2. An out-of-bounds access exists in the function buildaudioprocunit in the file sound/usb/mixer.c. Tenable h...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003118)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003118 advisory. sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service sndusbmixerinterrupt use-after-free and system crash or possibly...
CVE-2019-15118
A flaw was found in the sound mixer handling of the Linux kernel. An attacker with physical access able to insert a specially crafted USB device can cause a recursive loop which continues to consume the reserved stack space leading to a system panic. The highest threat from this vulnerability is ...
DEBIAN-CVE-2019-15118
checkinputterm in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion...
CVE-2019-15117
parseaudiomixerunit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access...
Cross site request forgery (csrf)
parseaudiomixerunit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access...
UBUNTU-CVE-2019-15118
checkinputterm in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion...
The vulnerability of the Linux operating system’s kernel (sound/usb/mixer.c) allows a hacker to cause a service failure or exert other effects.
The vulnerability of the Linux operating system’s kernel sound/usb/mixer.c is related to the use of memory after it is freed in sndusbmixerinterrupt. Exploiting this vulnerability can allow a attacker to cause service failures or other effects through a specially crafted USB device...
CVE-2017-16527
The sound/usb/mixer.c in the Linux kernel, before 4.13.8, allows local users to cause a denial of service sndusbmixerinterrupt use-after-free and system crash or possibly have unspecified other impact via a crafted USB device...
DEBIAN-CVE-2017-16527
sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service sndusbmixerinterrupt use-after-free and system crash or possibly have unspecified other impact via a crafted USB device...
Code injection
sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service sndusbmixerinterrupt use-after-free and system crash or possibly have unspecified other impact via a crafted USB device...
UBUNTU-CVE-2017-16527
sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service sndusbmixerinterrupt use-after-free and system crash or possibly have unspecified other impact via a crafted USB device...