88 matches found
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: USB: Hub – Protection against access to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields within udev-bos without checking whether they have been allocated and...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: USB: Hub – Ignoring non-compliant devices with too many configurations or interfaces Robert Morris created a test program that can cause usbhubtostructhub to dereference a NULL or inappropriate pointer. Oops: General Protection...
ROS-20260119-7358
A vulnerability in the drivers/usb/core/hub.c component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002137)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002137 advisory. The hubactivate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physicall...
Unbreakable Enterprise kernel security update
5.4.17-2136.349.3.1 - i40e: add validation for ringlen param Lukasz Czapnik Orabug: 38604171 CVE-2025-39973 - i40e: increase max descriptors for XL710 Justin Bronder Orabug: 38604171 CVE-2025-39973 5.4.17-2136.349.3 - Revert 'net/mlx5e: Update and set Xon/Xoff upon MTU set' Jakub Kicinski Orabug:...
Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2025-21776)
USB: hub: Ignore non-compliant devices with too many configs or interfaces. A test program can cause usbhubtostructhub to dereference a NULL or inappropriate pointer. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEV...
EUVD-2012-3670
Malware in sbrugna...
EUVD-2013-5032
Malware in sbrugna...
EUVD-2013-5698
Malware in sbrugna...
EUVD-2015-8682
Malware in sbrugna...
EUVD-2024-19138
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-52477
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside...
kernel: usb: hub: Guard against accesses to uninitialized BOS descriptors
In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside udev-bos without checking if it was allocated and initialized. If...
DEBIAN-CVE-2025-38134
In the Linux kernel, the following vulnerability has been resolved: usb: acpi: Prevent null pointer dereference in usbacpiaddusb4devlink As demonstrated by the fix for updateportdevicestate, commit 12783c0b9e2c "usb: core: Prevent null pointer dereference in updateportdevicestate",...
CVE-2013-5192
The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service system crash via a request with a crafted 1 port or 2 port number...
PT-2025-27720
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null pointer dereference issue has been identified in the Linux kernel, specifically in the usb acpi add usb4 devlink function. This issue arises when usb hub to struct hub returns...
USB: hub: Ignore non-compliant devices with too many configs or interfaces
...
Linux Distros Unpatched Vulnerability : CVE-2015-8816
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hubactivate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows...
CVE-2025-21776
In the Linux kernel, the following vulnerability has been resolved: USB: hub: Ignore non-compliant devices with too many configs or interfaces Robert Morris created a test program which can cause usbhubtostructhub to dereference a NULL or inappropriate pointer: Oops: general protection fault,...
AZL-57813 CVE-2025-21776 affecting package kernel for versions less than 5.15.179.1-1
In the Linux kernel, the following vulnerability has been resolved: USB: hub: Ignore non-compliant devices with too many configs or interfaces Robert Morris created a test program which can cause usbhubtostructhub to dereference a NULL or inappropriate pointer: Oops: general protection fault,...