Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed when there is a disconnection. The USB disconnection callback should be short and not too long. Alternatively, the current code uses sndcardfree when there is a disconnection, but this waits...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021606)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021606 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0

...

SUSE CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620

A flaw was found in the Linux kernel, specifically within the ALSA usx2y driver for the TASCAM US-144MKII audio interface. A malicious USB device, crafted to have an invalid configuration with a missing interface, can cause the driver to attempt to access a non-existent memory location a NULL...

DEBIAN-CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620

CVE-2026-31620 affects the Linux kernel ALSA usx2y driver (TASCAM US-144MKII). A malicious USB device can present a configuration with bInterfaceNumber=1 but no interface 0, causing usb_ifnum_to_if(dev,0) to dereference NULL. This can crash the kernel (DoS). The fix is to properly check the retur...

CVE-2026-31620

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

CVE-2026-31620 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can have a configuration containing bInterfaceNumber=1 but no interface 0. USB configuration descriptors ar...

PT-2026-34972

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the ALSA usx2y driver for the TASCAM US-144MKII device. A malicious USB device can provide a configuration containing bInterfaceNumber=1 without an...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990271)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990271 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989988)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989988 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989090)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989090 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pa...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987010)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987010 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Don't call freepagesexact with NULL address Unlike some other functions, we can't pa...

The vulnerability of the usb_stream_free() function in the sound/usb/usx2y/usb_stream.c module allows a hacker to cause a service failure for USB audio devices in Linux operating systems.

The vulnerability of the usbstreamfree function in the sound/usb/usx2y/usbstream.c module, which handles USB audio devices in Linux operating systems, is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper resource release on USB disconnection in the ALSA:usx2y module, which could lead to a memory leak...

SUSE CVE-2024-56533

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...

DEBIAN-CVE-2024-56533

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...

UBUNTU-CVE-2024-56533

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses sndcardfree at disconnection, but this waits for the close of all...