Lucene search
K

52 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After the DME Link startup, the error return value is set to the MIPI UniPro GenericErrorCode, which can be either 0 SUCCESS or 1 FAILURE. During a driver probe, an error code...

5.7AI score0.00158EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/08 3:17 p.m.10 views

CVE-2026-43471

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix possible NULL pointer dereference in ufshcdaddcommandtrace The kernel log indicates a crash in ufshcdaddcommandtrace, due to a NULL pointer dereference when accessing hwq-id. This can happen if...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:22 p.m.9 views

CVE-2026-43471

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix possible NULL pointer dereference in ufshcdaddcommandtrace The kernel log indicates a crash in ufshcdaddcommandtrace, due to a NULL pointer dereference when accessing hwq-id. This can happen if...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/08 2:22 p.m.25 views

CVE-2026-43471

Summary (mode C): The CVE-2026-43471 issue affects the Linux kernel’s SCSI UFS core, specifically a NULL pointer dereference in ufshcd_add_command_trace() when hwq is NULL, which can occur if ufshcd_mcq_req_to_hwq() returns NULL. A patch adds a NULL check for hwq before accessing hwq->id to pr...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/08 2:21 p.m.31 views

CVE-2026-43415 scsi: ufs: core: Fix SError in ufshcd_rtc_work() during UFS suspend

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix SError in ufshcdrtcwork during UFS suspend In ufshcdwlsuspend, canceldelayedworksync is called to cancel the UFS RTC work, but it is placed after ufshcdvopssuspendhba, pmop, POSTCHANGE. This creates a race...

0.00089EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ufshcdaddcommandTrace function in the scsi UFS core component. This function does not check whether...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43471

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: ufs: core: Fix possible NULL pointer dereference in ufshcdaddcommandtrace The kernel log indicates a crash in ufshcdaddcommandtrace, due to a NULL pointer...

5.5CVSS6.2AI score0.00114EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-39132

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference can occur in the ufshcd add command trace function. This issue happens when the ufshcd mcq req to hwq function returns NULL, leading to a kernel crash when the...

5.8AI score0.00114EPSS
Exploits0References9
Redos
Redos
added 2026/03/04 12:0 a.m.5 views

ROS-20260304-73-0010

A vulnerability in the ufshcderrhandlingprepare function of the Linux operating system kernel is related to incorrect resource sweeping or freeing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.1AI score0.00157EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38119)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38119 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: core: ufs: Fix a hang in the error...

5.5CVSS5.3AI score0.00157EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-46843)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46843 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Remove SCSI host only i...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References2
NVD
NVD
added 2025/10/01 12:15 p.m.10 views

CVE-2023-53510

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp-cmd ufshcdqueuecommand may be called two times in a row for a SCSI command before it is completed. Hence make the following changes: - In the functions that submit a command, do not check the...

7.8CVSS0.00144EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-39803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: ufs: core: Remove WARNONONCE call from ufshcduiccmdcompl The UIC completion interrupt may be disabled while an UIC command is being processed. When the UI...

7.8CVSS7.1AI score0.00133EPSS
Exploits0References2
OSV
OSV
added 2025/09/15 1:15 p.m.3 views

UBUNTU-CVE-2025-39803

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Remove WARNONONCE call from ufshcduiccmdcompl The UIC completion interrupt may be disabled while an UIC command is being processed. When the UIC completion interrupt is reenabled, an UIC interrupt is triggered an...

7.8CVSS5.7AI score0.00133EPSS
Exploits0References5
OSV
OSV
added 2025/09/12 2:25 p.m.2 views

OESA-2025-2272 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: scsi: core: ufs: Fix a hang in the error handler. ufshcderrhandlingprepare calls ufshcdrpmgetsync. The latter function can only succeed if UFSHCDEHINPROGRESS is...

7.8CVSS5.7AI score0.00168EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-41053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix ufshcdabortone racing issue When ufshcdabortone is racing with the...

5.5CVSS5.8AI score0.00291EPSS
Exploits0References2
OSV
OSV
added 2025/05/08 7:15 a.m.8 views

AZL-62624 CVE-2025-37826 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Add NULL check in ufshcdmcqcomplpendingtransfer Add a NULL check for the returned hwq pointer by ufshcdmcqreqtohwq. This is similar to the fix in commit 74736103fb41 "scsi: ufs: core: Fix ufshcdabortone racing...

5.5CVSS6.6AI score0.00148EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.5 views

The vulnerability of the ufshcd_set_dma_mask() function in the drivers/ufs/core/ufshcd.c module affects UFS-host controllers in Linux operating systems. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ufshcdsetdmamask function in the drivers/ufs/core/ufshcd.c module affects UFS-host controllers. In Linux operating systems, this vulnerability is related to the reallocation of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the...

7.8CVSS6.8AI score0.00211EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.6 views

The vulnerability of the ufshcd_rpm_get_sync() function in the UFS driver of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ufshcdrpmgetsync function in the UFS driver of the Linux operating system is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.6 views

The vulnerability of the ufshcd_abort_one() function in the drivers/ufs/core/ufshcd.c kernel module of the Linux operating system allows a attacker to trigger a service failure.

The vulnerability of the ufshcdabortone function in the drivers/ufs/core/ufshcd.c file of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.5CVSS6.5AI score0.00291EPSS
Exploits0References10Affected Software3
Rows per page
Query Builder