Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: USB: wdm: the race between wdmopen and wdmwwanportstop has been eliminated. Clearing WDMWWANINUSE must be the last action; otherwise, we may open a device whose URBs User-Role-Based Services are still compromised...

MiracleLinux 7 : qemu-kvm-1.5.3-175.el7.1 (AXSA:2020-748:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-748:04 advisory. QEMU: usb: out-of-bounds r/w access issue while processing usb packets CVE-2020-14364 QEMU: slirp: use-after-free in ipreass function in ipinput.c...

UBUNTU-CVE-2025-40020

In the Linux kernel, the following vulnerability has been resolved: can: peakusb: fix shift-out-of-bounds issue Explicitly uses a 64-bit constant when the number of bits used for its shifting is 32 which is the case for PC CAN FD interfaces supported by this driver. mkl: update subject, apply...

October 20, 2025—KB5070773 (OS Builds 26200.6901 and 26100.6901) Out-of-band

October 20, 2025—KB5070773 OS Builds 26200.6901 and 26100.6901 Out-of-band Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to...

EUVD-2021-20922

Malware in sbrugna...

EUVD-2023-24812

Malicious code in bioql PyPI...

Advisory ROSA-SA-2025-2861

Software: kernel 4.18.0 OS: ROSA Virtualization 3.0 packageevrstring: kernel-4.18.0-553.40.1.el810 CVE-ID: CVE-2019-13631 BDU-ID: 2019-03626 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the parsehidreportdescriptor function of the Linux operating system kernel is related to writing outside buffer...

CVE-2023-52938 usb: typec: ucsi: Don't attempt to resume the ports before they exist

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Don't attempt to resume the ports before they exist This will fix null pointer dereference that was caused by the driver attempting to resume ports that were not yet registered...

Linux Distros Unpatched Vulnerability : CVE-2024-50100

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: USB: gadget: dummy-hcd: Fix task hung problem The syzbot fuzzer has been encountering task...

Linux Distros Unpatched Vulnerability : CVE-2012-2693

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might...

CVE-2024-38565

In the Linux kernel, the following vulnerability has been resolved: wifi: ar5523: enable proper endpoint verification Syzkaller reports 1 hitting a warning about an endpoint in use not having an expected type to it. Fix the issue by checking for the existence of all proper endpoints with their...

Failed to Install Citrix Workspace App with "Installation NOT successful for 'USB', error: 1603."

Failed to install Citrix Workspace App with "Installation NOT successful for 'USB', error: 1603."...

GSD-2023-1002421 net: USB: Fix wrong-direction WARNING in plusb.c

net: USB: Fix wrong-direction WARNING in plusb.c This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.306 by commit...

OPENSUSE-SU-2021:0173-1 Security update for chromium

This update for chromium fixes the following issues: chromium was updated to 88.0.4324.96 boo1181137 - CVE-2021-21117: Insufficient policy enforcement in Cryptohome - CVE-2021-21118: Insufficient data validation in V8 - CVE-2021-21119: Use after free in Media - CVE-2021-21120: Use after free in...

CVE-2020-25723

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on t...

Important: Red Hat Security Advisory: qemu-kvm security update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...