usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel prior to 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
linux linux kernel |
||
netapp cloud backup - |
||
netapp steelstore cloud integrated storage - |
||
netapp hci storage nodes - |
||
netapp aff a700s - |
||
netapp active iq unified manager - |
||
netapp hci compute node - |
||
netapp solidfire \\& hci storage node - |
||
netapp solidfire baseboard management controller - |
||
netapp hci baseboard management controller h300s |
||
netapp hci baseboard management controller h500s |
||
netapp hci baseboard management controller h700s |
||
netapp hci baseboard management controller h410s |
||
netapp hci baseboard management controller h410c |
||
netapp hci baseboard management controller h610c |
||
netapp hci baseboard management controller h610s |
||
netapp hci baseboard management controller h615c |
Qualcomm bugs among the worst – including a critical hole in wireless networking Is it Patch Blues-day for Outlook? Microsoft's email client breaks worldwide, leaves everyone stumped
Google has emitted the August edition of its Android software security updates. This month's fixes include one remote-code-execution bug (CVE-2020-0240), present in the Android Framework. Google warns that the bug "could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process," though isn't being exploited... yet. That flaw was the only remote-code-execution bug present in the 01 level of the security patch bundle. This is t...
Vulmon