4 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-36895
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: use correct buffer size when parsing configfs lists This commit fixes uvc...
BELL-CVE-2024-36895
Bulletin has no description...
CVE-2024-36895
The CVE-2024-36895 issue in the Linux kernel affects usb gadget uvc configfs parsing. A heap-allocated temp buffer used by __uvcg_iter_item_entries() was not constrained by a computed max size (previously size-checked via sizeof()), causing overly small max item sizes on some architectures (7 byt...
CVE-2024-36895
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: use correct buffer size when parsing configfs lists This commit fixes uvc gadget support on 32-bit platforms. Commit 0df28607c5cb "usb: gadget: uvc: Generalise helper functions for reuse" introduced a helper...