56 matches found
SUSE CVE-2026-53193
In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instances at closing When sndtimer object is freed via sndtimerfree and still pending sndtimerinstance objects are assigned to the timer object, it tries to unlink all instances and just set NULL...
CVE-2026-53192
In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at sndtimeruserparams At releasing a timer object, e.g. when a userspace timer CONFIGSNDUTIMER gets closed and sndtimerfree is called, it tries to detach the timer instances and release the resources. However...
PT-2026-52288
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the ALSA timer component. When a userspace timer is closed and the snd timer free function is called to release resources, other active tasks may still...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000610)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000610 advisory. An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Tenable has extracted the...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004424)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004424 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003945)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003945 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001347)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001347 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003209)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003209 advisory. sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kern...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002588)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002588 advisory. An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Tenable has extracted the...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003226)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003226 advisory. The sndtimeruserparams function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtai...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003042)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003042 advisory. sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a deni...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002730)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002730 advisory. An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Tenable has extracted the...
EUVD-2019-9405
Malware in sbrugna...
EUVD-2017-4684
Malware in sbrugna...
EUVD-2025-28947
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2016-2548
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of...
Linux Distros Unpatched Vulnerability : CVE-2019-19807
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to...
SUSE CVE-2016-2546
sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...
SUSE CVE-2016-2547
sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...
SUSE CVE-2016-4569
The sndtimeruserparams function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface...