Lucene search
K

23 matches found

EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28732

In the Linux kernel, the following vulnerability has been resolved: usb: renesasusbhs: fix use-after-free in ISR during device removal In usbhsremove, the driver frees resources including the pipe array while the interrupt handler usbhsinterrupt is still registered. If an interrupt fires after...

5.8AI score0.00126EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2024/08/22 12:0 a.m.12 views

Ubuntu: Security Advisory (USN-6971-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS7.4AI score0.00391EPSS
Exploits0References2
OSV
OSV
added 2024/08/21 5:33 p.m.8 views

USN-6971-1 linux vulnerabilities

It was discovered that the Option USB High Speed Mobile device driver in the Linux kernel did not properly handle error conditions. A physically proximate attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-37159 A security issue was...

6.4CVSS6.9AI score0.00391EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2024/08/21 5:33 p.m.42 views

USN-6971-1: Linux kernel vulnerabilities

It was discovered that the Option USB High Speed Mobile device driver in the Linux kernel did not properly handle error conditions. A physically proximate attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-37159 A security issue was...

6.4CVSS7.1AI score0.00391EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.3 views

The vulnerability of the get_freeerialendar_index function in the USB HSO (High Speed Options) driver of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the getfreeserialindex function in the USB HSO High Speed Options driver of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

5.5CVSS6.5AI score0.00256EPSS
Exploits0References24Affected Software3
Amazon
Amazon
added 2022/01/28 12:0 a.m.12 views

Important: kernel

Issue Overview: A flaw was found in the Linux kernel, where a BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack. This issue occurs when the protection mechanism neglects the possibility of uninitialized memory locations on the BPF...

9.1CVSS6.4AI score0.01497EPSS
Exploits2
Cloud Foundry
Cloud Foundry
added 2022/01/20 12:0 a.m.49 views

USN-5163-1: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description Ilja Van Sprundel discovered that the SCTP implementation in the Linux kernel did not properly perform size validations on incoming packets in some situations. An attacker could possibly use this to expos...

6.4CVSS7.4AI score0.00533EPSS
Exploits1Affected Software1
Cloud Foundry
Cloud Foundry
added 2022/01/20 12:0 a.m.52 views

USN-5164-1: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that the Option USB High Speed Mobile device driver in the Linux kernel did not properly handle error conditions. A physically proximate attacker could use this to...

6.4CVSS7.3AI score0.00533EPSS
Exploits1Affected Software3
Ubuntu
Ubuntu
added 2021/11/30 11:8 p.m.100 views

USN-5164-1: Linux kernel vulnerabilities

It was discovered that the Option USB High Speed Mobile device driver in the Linux kernel did not properly handle error conditions. A physically proximate attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-37159 It was discovered that th...

6.4CVSS7.1AI score0.00533EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-5115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.01476EPSS
Exploits11References2
Ubuntu
Ubuntu
added 2021/10/20 6:39 p.m.141 views

USN-5115-1: Linux kernel (OEM) vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF...

7.8CVSS7.4AI score0.01476EPSS
Exploits11
Ubuntu
Ubuntu
added 2021/10/18 10:15 p.m.160 views

USN-5092-3: Linux kernel (Azure) regression

USN-5092-2 fixed vulnerabilities in Linux 5.11-based kernels. Unfortunately, for Linux kernels intended for use within Microsoft Azure environments, that update introduced a regression that could cause the kernel to fail to boot in large Azure instance types. This update fixes the problem. We...

7.5AI score
Exploits0References2
OSV
OSV
added 2021/09/28 4:9 a.m.4 views

USN-5092-1 linux, linux-aws, linux-aws-5.11, linux-gcp, linux-kvm, linux-oracle, linux-raspi vulnerabilities

Valentina Palmiotti discovered that the iouring subsystem in the Linux kernel could be coerced to free adjacent memory. A local attacker could use this to execute arbitrary code. CVE-2021-41073 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF verifier in...

7.8CVSS7.2AI score0.03365EPSS
Exploits8References13
OpenVAS
OpenVAS
added 2019/09/12 12:0 a.m.53 views

Ubuntu: Security Advisory (USN-4115-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.05789EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2019/09/03 12:0 a.m.50 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel (AWS) vulnerabilities (USN-4118-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4118-1 advisory. It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could...

10CVSS8.1AI score0.52199EPSS
Exploits50References62
Tenable Nessus
Tenable Nessus
added 2019/09/03 12:0 a.m.47 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4115-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4115-1 advisory. Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received...

10CVSS8AI score0.05789EPSS
Exploits17References29
OSV
OSV
added 2019/09/02 8:38 p.m.3 views

USN-4115-1 linux, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2 vulnerabilities

Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2018-19985 Zhipeng Xie discovered that an...

10CVSS7.2AI score0.05789EPSS
Exploits17References29
Ubuntu
Ubuntu
added 2019/09/02 8:38 p.m.282 views

USN-4115-1: Linux kernel vulnerabilities

Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2018-19985 Zhipeng Xie discovered that an...

10CVSS7.6AI score0.05789EPSS
Exploits17
Cloud Foundry
Cloud Foundry
added 2019/04/12 12:0 a.m.202 views

USN-3910-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3910-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.0...

6.7CVSS6.8AI score0.07291EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2019/03/18 12:0 a.m.51 views

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3910-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3910-1 advisory. It was discovered that the f2fs filesystem implementation in the Linux kernel did not handle the noflushmerge mount option correctly. An attacker could u...

6.7CVSS6.6AI score0.07291EPSS
Exploits6References6
Rows per page
Query Builder