238 matches found
CVE-2021-47273
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3-meson-g12a: fix usb2 PHY glue init when phy0 is disabled When only PHY1 is used for example on Odroid-HC4, the regmap init code uses the usb2 ports when doesn't initialize the PHY1 regmap entry. This fixes: Unable to...
CVE-2021-47269
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3wIndextodep and we might be referring a non-existing ep and trigger a NULL pointer exception. In certain configurations we might use fewer ep...
CVE-2021-47413 usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle
In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: cihdrcimx: Also search for 'phys' phandle When passing 'phys' in the devicetree to describe the USB PHY phandle which is the recommended way according to Documentation/devicetree/bindings/usb/ci-hdrc-usb2.txt the...
CVE-2021-47413
CVE-2021-47413 concerns a NULL pointer dereference in the Linux kernel (usb: chipidea: ci_hdrc_imx) when a 'phys' phandle is provided in devicetree on i.MX7/i.MX8MM. The chipidea core populates usb_phy in ci_hdrc, while charger logic checks data->usb_phy in imx_usbmisc_data, causing a NULL der...
CVE-2021-47331 usb: common: usb-conn-gpio: fix NULL pointer dereference of charger
In the Linux kernel, the following vulnerability has been resolved: usb: common: usb-conn-gpio: fix NULL pointer dereference of charger When power on system with OTG cable, IDDIG's interrupt arises before the charger registration, it will cause a NULL pointer dereference, fix the issue by...
CVE-2021-47331
In the Linux kernel, the following vulnerability has been resolved: usb: common: usb-conn-gpio: fix NULL pointer dereference of charger When power on system with OTG cable, IDDIG's interrupt arises before the charger registration, it will cause a NULL pointer dereference, fix the issue by...
CVE-2021-47331
The CVE-2021-47331 issue affects the Linux kernel usb-conn-gpio path. Root cause: an IDDIG interrupt can occur before charger registration, causing a NULL pointer dereference. Fix: register the power supply before requesting IDDIG/VBUS IRQ to prevent the dereference. Affected scope and exact reme...
CVE-2021-47331 usb: common: usb-conn-gpio: fix NULL pointer dereference of charger
In the Linux kernel, the following vulnerability has been resolved: usb: common: usb-conn-gpio: fix NULL pointer dereference of charger When power on system with OTG cable, IDDIG's interrupt arises before the charger registration, it will cause a NULL pointer dereference, fix the issue by...
CVE-2021-47273 usb: dwc3-meson-g12a: fix usb2 PHY glue init when phy0 is disabled
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3-meson-g12a: fix usb2 PHY glue init when phy0 is disabled When only PHY1 is used for example on Odroid-HC4, the regmap init code uses the usb2 ports when doesn't initialize the PHY1 regmap entry. This fixes: Unable to...
CVE-2021-47272 usb: dwc3: gadget: Bail from dwc3_gadget_exit() if dwc->gadget is NULL
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...
CVE-2021-47272 usb: dwc3: gadget: Bail from dwc3_gadget_exit() if dwc->gadget is NULL
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...
CVE-2021-47270 usb: fix various gadgets null ptr deref on 10gbps cabling.
In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadgets null ptr deref on 10gbps cabling. This avoids a null pointer dereference in fecm,eem,hid,loopback,printer,rndis,serial,sourcesink,subset,tcm by simply reusing the 5gbps config for 10gbps...
CVE-2021-47239
In the Linux kernel, the following vulnerability has been resolved: net: usb: fix possible use-after-free in smsc75xxbind The commit 46a8b29c6306 "net: usb: fix memory leak in smsc75xxbind" fails to clean up the work scheduled in smsc75xxreset- smsc75xxsetmulticast, which leads to use-after-free ...
CVE-2021-47220
...
CVE-2024-35812
A vulnerability was found in the USB Communication Device Class - Wireless Data Modem CDC-WDM driver in the Linux Kernel, leading to a race condition between read operations and workqueue processing. This issue could potentially result in unpredictable behavior or crashes. Mitigation Mitigation f...
CVE-2024-35790
In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group The DisplayPort driver's sysfs nodes may be present to the userspace before typecaltmodesetdrvdata completes in dpaltmodeprobe. This...
CVE-2023-52655
In the Linux kernel, the following vulnerability has been resolved: usb: aqc111: check packet for fixup for true limit If a device sends a packet that is inbetween 0 and sizeofu64 the value passed to skbtrim as length will wrap around ending up as some very large value. The driver will then proce...
CVE-2023-52655
In the Linux kernel, the following vulnerability has been resolved: usb: aqc111: check packet for fixup for true limit If a device sends a packet that is inbetween 0 and sizeofu64 the value passed to skbtrim as length will wrap around ending up as some very large value. The driver will then proce...
CVE-2024-26997
A vulnerability as found in the USB dwc2 host driver in the Linux kernel, involving a dereference issue in the Descriptor-Based DMA DDMA completion flow. This issue could lead to undefined behavior or system instability. Mitigation Mitigation for this issue is either not available or the currentl...
CVE-2024-26934
In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix deadlock in usbdeauthorizeinterface Among the attribute file callback routines in drivers/usb/core/sysfs.c, the interfaceauthorizedstore function is the only one which acquires a device lock on an ancestor device: ...