7 matches found
CVE-2022-50568
CVE-2022-50568 affects the Linux kernel USB gadget code for f_hidg. The embedded struct cdev’s lifetime was not tied to the enclosing f_hidg, creating a use-after-free if /dev/hidgN is kept open while the gadget is deleted. The fix is to pull the existing device into struct f_hidg and use the cde...
Linux Distros Unpatched Vulnerability : CVE-2022-49686
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: fix list double add in uvcgvideopump A panic can occur if the endpoint...
The vulnerability of the usb_string_copy() function in the Linux operating system’s USB driver allows a hacker to induce a service failure.
The vulnerability of the usbstringcopy function in the drivers/usb/gadget/configfs.c file of the Linux kernel’s USB gadget driver relates to reading memory beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...
SUSE CVE-2021-47272
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...
CVE-2021-47272
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...
DEBIAN-CVE-2021-47272
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenario in which dwc3gadgetinit can fail: during during host - peripheral mode switch in dwc3setmode, and a pending gadget driver fails to...
UBUNTU-CVE-2021-39648
In gadgetdevdescUDCshow of configfs.c, there is a possible disclosure of kernel heap memory due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...