Linux Distros Unpatched Vulnerability : CVE-2026-23679

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the parseiadarray function. An attacker can cause a denial of service by supplying a malformed USB descriptor with a crafted bLength value, leading to a one-byte out-of-bounds read when processing USB interface...

DEBIAN-CVE-2026-47104

libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...

UBUNTU-CVE-2026-47104

libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in parseiadarray in descriptor.c that allows attackers to trigger a denial of service by supplying a malformed USB descriptor whose bLength equals size minus one, causing the bounds check to use the original buffer...

CVE-2026-47104

CVE-2026-47104 affects libusb before 1.0.30. The vulnerability is a one-byte out-of-bounds read in parse_iad_array() in descriptor.c, allowing a denial of service when a malformed USB descriptor is supplied with bLength equal to size minus one, causing the bounds check to use the original buffer ...

PT-2026-43696

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

MiracleLinux 3 : kmod-kvm-84-8.AXS3 (AXSA:2010-131:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-131:01 advisory. This package provides the kvm kernel modules built for the Linux kernel. Security issues fixed with this release: CVE-2010-0297 Buffer overflow in th...

EUVD-2010-0328

Malware in sbrugna...

SUSE-SU-2024:1158-1 Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container

This update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container fixes the following issues: - rebui...

SUSE CVE-2010-0297

Buffer overflow in the usbhosthandlecontrol function in the USB passthrough handling implementation in usb-linux.c in QEMU before 0.11.1 allows guest OS users to cause a denial of service guest OS crash or hang or possibly execute arbitrary code on the host OS via a crafted USB packet...

Important: Red Hat Bug Fix Advisory: virt:rhel bug fix update

An update for the virt:rhel module is now available for Red Hat Enterprise Linux 8. Bug Fixes: qemu-kvm core dumped after hotplug the deleted disk with iothread parameter BZ1718992 Detached device when trying to upgrade USB device firmware when in doing USB Passthrough via QEMU BZ1719228...

virt:rhel bug fix update

Bug Fixes: qemu-kvm core dumped after hotplug the deleted disk with iothread parameter BZ1718992 Detached device when trying to upgrade USB device firmware when in doing USB Passthrough via QEMU BZ1719228...

ALBA-2019:2715 virt:rhel bug fix update

Bug Fixes: qemu-kvm core dumped after hotplug the deleted disk with iothread parameter BZ1718992 Detached device when trying to upgrade USB device firmware when in doing USB Passthrough via QEMU BZ1719228...

openSUSE Security Update : kbuild / virtualbox (openSUSE-2018-938) (Spectre)

This update for kbuild, virtualbox fixes the following issues : kbuild changes : - Update to version 0.1.9998svn3110 - Do not assume glibc glob internals - Support GLIBC glob interface version 2 - Fix build failure boo1079838 - Fix build with GCC7 boo1039375 - Fix build by disabling vboxvideodrv....

Security update for kbuild, virtualbox (important)

This update for kbuild, virtualbox fixes the following issues: kbuild changes: - Update to version 0.1.9998svn3110 - Do not assume glibc glob internals - Support GLIBC glob interface version 2 - Fix build failure boo1079838 - Fix build with GCC7 boo1039375 - Fix build by disabling vboxvideodrv.so...

How to troubleshoot XenServer USB Passthrough related issues

This article describes common error scenarios as well as general troubleshooting tips for XenServer USB Passthrough feature...

How to configure USB Passthrough with XenServer

This article describes the method to configure USB Pass-through with XenServer...

Scientific Linux Security Update : kvm on SL5.4 i386/x86_64

The x86 emulator implementation was missing a check for the Current Privilege Level CPL and I/O Privilege Level IOPL. A user in a guest could leverage these flaws to cause a denial of service guest crash or possibly escalate their privileges within that guest. CVE-2010-0298, CVE-2010-0306 A flaw...

Buffer overflow

Buffer overflow in the usbhosthandlecontrol function in the USB passthrough handling implementation in usb-linux.c in QEMU before 0.11.1 allows guest OS users to cause a denial of service guest OS crash or hang or possibly execute arbitrary code on the host OS via a crafted USB packet...

CVE-2010-0297

Buffer overflow in the usbhosthandlecontrol function in the USB passthrough handling implementation in usb-linux.c in QEMU before 0.11.1 allows guest OS users to cause a denial of service guest OS crash or hang or possibly execute arbitrary code on the host OS via a crafted USB packet...