Security update for hplip

This update for hplip fixes the following issues Security issues: CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation bsc1266031. CVE-2026-8631: escalation of privileges and/or arbitrary code execution via an...

SUSE-SU-2026:2222-1 Security update for hplip

This update for hplip fixes the following issues Security issues: - CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation bsc1266031. - CVE-2026-8631: escalation of privileges and/or arbitrary code execution via ...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resume Since the commit c49cfa917025 “USB: serial: use generic method if no alternative is provided in the USB serial layer”, the USB serial core calls the generic resume implementation when the...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: USB: serial: quatech2: fix null-ptr-deref in qt2processreadurb This patch addresses a null-ptr-deref in qt2processreadurb due to an incorrect bounds check in the following code: c if newport serial-numports deverr&port-dev, “%s -...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005110)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005110 advisory. In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resume Since commit c49cfa917025 USB: serial: use generic meth...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000684)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000684 advisory. The chaseport function in drivers/usb/serial/ioti.c in the Linux kernel before 3.7.4 allows local users to cause a denial of service NULL pointer dereference and...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001867)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001867 advisory. Multiple buffer overflows in the commandportreadcallback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003120)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003120 advisory. drivers/usb/serial/cypressm8.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL pointer dereference and syste...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002993)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002993 advisory. The klsi105getlinestate function in drivers/usb/serial/kl5kusb105.c in the Linux kernel before 4.9.5 places uninitialized heap-memory contents into a log entry upon ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003399)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003399 advisory. The usbserialconsoledisconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002316)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002316 advisory. drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS ...

EUVD-2017-9479

Malware in sbrugna...

EUVD-2013-1799

Malware in sbrugna...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-388048)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-388048 advisory. In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resume Since commit c49cfa917025 USB: serial: use generic meth...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-391626)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-391626 advisory. In the Linux kernel, the following vulnerability has been resolved: USB: serial: quatech2: fix null-ptr-deref in qt2processreadurb This patch addresses a...

EUVD-2025-2638

Malicious code in bioql PyPI...

EUVD-2025-5137

Malicious code in bioql PyPI...

CVE-2023-53356

CVE-2023-53356 affects the Linux kernel’s USB gadget stack (usb: gadget: u_serial). The issue is a potential null pointer dereference in gserial_suspend if gserial_disconnect has cleared gser->ioport and suspend is invoked afterwards. The fix adds a null pointer check in gserial_suspend and in...

CVE-2023-53356 usb: gadget: u_serial: Add null pointer check in gserial_suspend

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Add null pointer check in gserialsuspend Consider a case where gserialdisconnect has already cleared gser-ioport. And if gserialsuspend gets called afterwards, it will lead to accessing of gser-ioport and th...

SUSE CVE-2025-38448

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Fix race condition in TTY wakeup A race condition occurs when gsstartio calls either gsstartrx or gsstarttx, as those functions briefly drop the portlock for usbepqueue. This allows gsclose and...