Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: Fixed a memory leak in dwc2hcdinit The usbcreatehcd function allocates memory for the hcd structure. We should call usbputhcd to free that memory when platformgetresource fails, thereby preventing the memory leak. To f...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013316)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013316 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: host: Fix dereference issue in DDMA completion flow. Fixed variable dereference issue ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992569)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992569 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix a devres leak in hwenable upon suspend resume Each time the platform goes to low...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989363)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989363 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-393980)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-393980 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency In...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986545)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986545 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986895)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986895 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986430)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986430 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986354)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986354 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: Fix memory leak in dwc2hcdinit usbcreatehcd will alloc memory for hcd, and we should...

Linux Distros Unpatched Vulnerability : CVE-2021-47409

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if platformgetresource returns NULL, we need check the return value...

SUSE CVE-2023-53054

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix a devres leak in hwenable upon suspend resume Each time the platform goes to low power, PM suspend / resume routines call: dwc2lowlevelhwenable - devmaddactionorreset. This adds a new devres each time. This may als...

CVE-2023-53054

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix a devres leak in hwenable upon suspend resume Each time the platform goes to low power, PM suspend / resume routines call: dwc2lowlevelhwenable - devmaddactionorreset. This adds a new devres each time. This may als...

UBUNTU-CVE-2023-53054

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix a devres leak in hwenable upon suspend resume Each time the platform goes to low power, PM suspend / resume routines call: dwc2lowlevelhwenable - devmaddactionorreset. This adds a new devres each time. This may als...

CVE-2023-53054 usb: dwc2: fix a devres leak in hw_enable upon suspend resume

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix a devres leak in hwenable upon suspend resume Each time the platform goes to low power, PM suspend / resume routines call: dwc2lowlevelhwenable - devmaddactionorreset. This adds a new devres each time. This may als...

UBUNTU-CVE-2022-49713

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: Fix memory leak in dwc2hcdinit usbcreatehcd will alloc memory for hcd, and we should call usbputhcd to free it when platformgetresource fails to prevent memory leak. goto error2 label instead error1 to fix this...

CVE-2022-49299

CVE-2022-49299 entry is rejected/not used and does not represent an active vulnerability.

SUSE CVE-2021-47409

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if platformgetresource returns NULL, we need check the return value...

DEBIAN-CVE-2023-52855

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency In dwc2hcdurbenqueue, "urb-hcpriv = NULL" is executed without holding the lock "hsotg-lock". In dwc2hcdurbdequeue: spinlockirqsave&hsotg-lock, flags;...

CVE-2023-52855 usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency

In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency In dwc2hcdurbenqueue, "urb-hcpriv = NULL" is executed without holding the lock "hsotg-lock". In dwc2hcdurbdequeue: spinlockirqsave&hsotg-lock, flags;...

CVE-2023-52855

CVE-2023-52855: Linux kernel USB-DWC2 driver race condition. When _dwc2_hcd_urb_enqueue() and _dwc2_hcd_urb_dequeue() run concurrently, urb->hcpriv can be NULL-checked before urb->hcpriv is assigned NULL, enabling a NULL dereference in dwc2_hcd_urb_dequeue. The connected documents confirm t...