Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2024/06/05 12:36 a.m.10 views

kernel: usb: hub: Guard against accesses to uninitialized BOS descriptors

In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside udev-bos without checking if it was allocated and initialized. If...

5.5CVSS6.7AI score0.00231EPSS
Exploits0References5
OSV
OSV
added 2024/05/21 4:15 p.m.8 views

UBUNTU-CVE-2023-52781

In the Linux kernel, the following vulnerability has been resolved: usb: config: fix iteration issue in 'usbgetbosdescriptor' The BOS descriptor defines a root descriptor and is the base descriptor for accessing a family of related descriptors. Function 'usbgetbosdescriptor' encounters an iterati...

5.5CVSS6.1AI score0.00239EPSS
Exploits0References8
OSV
OSV
added 2024/02/29 6:15 a.m.3 views

DEBIAN-CVE-2023-52477

In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside udev-bos without checking if it was allocated and initialized. If...

5.5CVSS5.5AI score0.00231EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2017/12/14 12:0 a.m.10 views

The vulnerability of the `usb_get_bos_descriptor` function in the Linux operating system’s kernel allows a hacker to cause a service failure or exert other effects.

The vulnerability of the usbgetbosdescriptor function in the Linux kernel’s drivers/usb/core/config.c file relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure or other effects through a specially created USB device...

6.8CVSS7.1AI score0.00381EPSS
Exploits0References22Affected Software1
Rows per page
Query Builder