2 matches found
EUVD-2026-32500
libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...
The vulnerability of the `usb_get_bos_descriptor` function in the Linux operating system’s kernel allows a hacker to cause a service failure or exert other effects.
The vulnerability of the usbgetbosdescriptor function in the Linux kernel’s drivers/usb/core/config.c file relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure or other effects through a specially created USB device...