CVE-2023-37453

2023-07-0617:15:14

Debian Security Bug Tracker

security-tracker.debian.org

cve-2023-37453

out-of-bounds

crash

read_descriptors

usb subsystem

linux kernel

0.0005 Low

EPSS

Percentile

16.2%

JSON

An issue was discovered in the USB subsystem in the Linux kernel through 6.4.2. There is an out-of-bounds and crash in read_descriptors in drivers/usb/core/sysfs.c.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 6.1.55-1linux_6.1.55-1_all.deb
Debian11alllinux< 5.10.197-1linux_5.10.197-1_all.deb
Debian10alllinux<= 4.19.249-2linux_4.19.249-2_all.deb
Debian999alllinux< 6.5.3-1linux_6.5.3-1_all.deb
Debian13alllinux< 6.5.3-1linux_6.5.3-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 6.1.55-1	linux_6.1.55-1_all.deb
Debian	11	all	linux	< 5.10.197-1	linux_5.10.197-1_all.deb
Debian	10	all	linux	<= 4.19.249-2	linux_4.19.249-2_all.deb
Debian	999	all	linux	< 6.5.3-1	linux_6.5.3-1_all.deb
Debian	13	all	linux	< 6.5.3-1	linux_6.5.3-1_all.deb

CVE-2023-37453

Related