Количество 11
Количество 11
CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries.
CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries.
CVE-2025-40345
usb: storage: sddr55: Reject out-of-bound new_pba
CVE-2025-40345
In the Linux kernel, the following vulnerability has been resolved: u ...
GHSA-9r78-47qh-www2
In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries.
BDU:2026-01326
Уязвимость функции sddr55_write_data() модуля drivers/usb/storage/sddr55.c драйвера устройств шины USB ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
openSUSE-SU-2026:20145-1
Security update for the Linux Kernel
SUSE-SU-2026:0293-1
Security update for the Linux Kernel
SUSE-SU-2026:0315-1
Security update for the Linux Kernel
SUSE-SU-2026:0281-1
Security update for the Linux Kernel
SUSE-SU-2026:0278-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-40345 In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries. | 0% Низкий | около 2 месяцев назад | |
 | CVE-2025-40345 In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries. | 0% Низкий | около 2 месяцев назад | |
 | CVE-2025-40345 usb: storage: sddr55: Reject out-of-bound new_pba | CVSS3: 7.3 | 0% Низкий | около 2 месяцев назад |
| CVE-2025-40345 In the Linux kernel, the following vulnerability has been resolved: u ... | 0% Низкий | около 2 месяцев назад | |
| GHSA-9r78-47qh-www2 In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries. | 0% Низкий | около 2 месяцев назад | |
 | BDU:2026-01326 Уязвимость функции sddr55_write_data() модуля drivers/usb/storage/sddr55.c драйвера устройств шины USB ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации | CVSS3: 6.8 | 0% Низкий | 3 месяца назад |
 | openSUSE-SU-2026:20145-1 Security update for the Linux Kernel | 8 дней назад | ||
| SUSE-SU-2026:0293-1 Security update for the Linux Kernel | 15 дней назад | ||
| SUSE-SU-2026:0315-1 Security update for the Linux Kernel | 13 дней назад | ||
| SUSE-SU-2026:0281-1 Security update for the Linux Kernel | 18 дней назад | ||
| SUSE-SU-2026:0278-1 Security update for the Linux Kernel | 18 дней назад |
Уязвимостей на страницу