EUVD-2023-46966

Malicious code in bioql PyPI...

CVE-2023-42533

Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel...

CVE-2023-42533

Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel...

Input validation

Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel...

CVE-2023-42533

CVE-2023-42533 affects Samsung Mobile devices prior to SMR Nov-2023 Release 1. The root cause is improper input validation on the USB Gadget Interface, allowing a physical attacker to execute arbitrary code in the kernel. Impact is kernel compromise with high confidentiality, integrity, and avail...

PT-2023-28399 · Smr · Smr

Name of the Vulnerable Software and Affected Versions: SMR versions prior to Nov-2023 Release 1 Description: The issue is related to improper input validation with the USB Gadget Interface, allowing a physical attacker to execute arbitrary code in the Kernel. Recommendations: For versions prior t...

CVE-2022-4382

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side...

USN-5417-1 linux, linux-aws, linux-aws-5.13, linux-azure, linux-azure-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oracle, linux-raspi vulnerabilities

Ke Sun, Alyssa Milburn, Henrique Kawakami, Emma Benoit, Igor Chervatyuk, Lisa Aichele, and Thais Moreira Hamasaki discovered that the Spectre Variant 2 mitigations for AMD processors on Linux were insufficient in some situations. A local attacker could possibly use this to expose sensitive...