Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-47474
HistoryMay 22, 2024 - 12:00 a.m.

CVE-2021-47474

2024-05-2200:00:00
ubuntu.com
ubuntu.com
1
linux kernel
comedi vmk80xx
bulk-buffer overflow
vulnerability
driver
malicious device
bulk transfers

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved: comedi:
vmk80xx: fix bulk-buffer overflow The driver is using endpoint-sized
buffers but must not assume that the tx and rx buffers are of equal size or
a malicious device could overflow the slab-allocated receive buffer when
doing bulk transfers.

References

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%