2 matches found
CVE-2023-37453
CVE-2023-37453: Linux kernel USB subsystem contains an out-of-bounds read in read_descriptors() within drivers/usb/core/sysfs.c, which can crash the system when handling a crafted USB device. The connected documents provide description and impact but do not specify a public patch/version. Monitor...
CVE-2023-37454
CVE-2023-37454 affects the Linux kernel up to 6.4.2. It stems from a use-after-free in udf_put_super and udf_close_lvid triggered by a crafted UDF filesystem image in fs/udf/super.c. The external reference notes a different SUSE perspective. The provided connected documents do not specify a vendo...