Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2025/03/08 2:50 a.m.3 views

SUSE CVE-2025-21838

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: flush gadget workqueue after device removal devicedel can lead to new work being scheduled in gadget-work workqueue. This is observed, for example, with the dwc3 driver with the following call stack: devicedel...

5.5CVSS6.5AI score0.00185EPSS
Exploits0References13
OSV
OSV
added 2025/03/07 9:15 a.m.6 views

AZL-69012 CVE-2025-21838 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: flush gadget workqueue after device removal devicedel can lead to new work being scheduled in gadget-work workqueue. This is observed, for example, with the dwc3 driver with the following call stack: devicedel...

5.5CVSS6.8AI score0.00185EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.4 views

kernel: usb: gadget: core: Check for unset descriptor

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a null pointer panic in this case. This may happen if the gadget doesn't properly set up the endpoint for...

5.5CVSS6.5AI score0.00232EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/10/14 12:0 a.m.62 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12782)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12782 advisory. - VMCI: Fix use-after-free when removing resource in vmciresourceremove David Fernandez Gonzalez Orabug: 37037205 CVE-2024-46738 - exec: Fix ToCTo...

8.4CVSS7.3AI score0.00398EPSS
Exploits4References72
OSV
OSV
added 2024/09/20 11:9 a.m.5 views

OESA-2024-2152 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035i2cmasterxfer In af9035i2cmasterxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zer...

7.8CVSS6.2AI score0.00255EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/09/05 2:47 a.m.4 views

SUSE CVE-2024-44960

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a null pointer panic in this case. This may happen if the gadget doesn't properly set up the endpoint for...

6.5AI score0.00232EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2024/07/18 3:5 a.m.1 views

SUSE CVE-2022-48838

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: Fix use-after-free bug by not setting udc-dev.driver The syzbot fuzzer found a use-after-free bug: BUG: KASAN: use-after-free in devuevent+0x712/0x780 drivers/base/core.c:2320 Read of size 8 at addr ffff88802b934098 ...

5.5CVSS7.7AI score0.00233EPSS
Exploits0References11
Rows per page
Query Builder