3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
5.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.7%
In the Linux kernel, the following vulnerability has been resolved:
i2c: validate user data in compat ioctl
Wrong user data may cause warning in i2c_transfer(), ex: zero msgs.
Userspace should not be able to trigger warnings, so this patch adds
validation checks for user data in compact ioctl to prevent reported
warnings
git.kernel.org/stable/c/407c8708fb1bf2d4afc5337ef50635cf540c364b
git.kernel.org/stable/c/8d31cbab4c295d7010ebb729e9d02d0e9cece18f
git.kernel.org/stable/c/9e4a3f47eff476097e0c7faac04d1831fc70237d
git.kernel.org/stable/c/bb436283e25aaf1533ce061605d23a9564447bdf
git.kernel.org/stable/c/f68599581067e8a5a8901ba9eb270b4519690e26
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
5.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.7%