In the Linux kernel before 4.8, usb_parse_endpoint in drivers/usb/core/config.c does not validate the wMaxPacketSize field of an endpoint descriptor. NOTE: This vulnerability only affects products that are no longer supported by the supplier.
CPE | Name | Operator | Version |
---|---|---|---|
linux | eq | 3.8-rc7 | |
linux | eq | 2.6.28-rc8 | |
linux | eq | 3.8-rc2 | |
linux | eq | 3.8-rc1 | |
linux | eq | 2.6.20-rc6 | |
linux | eq | 2.6.31-rc9 | |
linux | eq | 4.3-rc1 | |
linux | eq | 3.1-rc10 | |
linux | eq | 3.6-rc1 | |
linux | eq | 2.6.29-rc4 |