LinuxVULNRICHMENT:CVE-2021-47270

HistoryMay 21, 2024 - 2:19 p.m.

CVE-2021-47270 usb: fix various gadgets null ptr deref on 10gbps cabling.

2024-05-2114:19:59

Linux

github.com

usb vulnerability fix

linux kernel

null pointer dereference

10gbps cabling

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

usb: fix various gadgets null ptr deref on 10gbps cabling.

This avoids a null pointer dereference in
f_{ecm,eem,hid,loopback,printer,rndis,serial,sourcesink,subset,tcm}
by simply reusing the 5gbps config for 10gbps.

References

git.kernel.org/stable/c/10770d2ac0094b053c8897d96d7b2737cd72f7c5

git.kernel.org/stable/c/4b289a0f3033f465b4fd51ba995251a7867a2aa2

git.kernel.org/stable/c/8cd5f45c1b769e3e9e0f4325dd08b6c3749dc7ee

git.kernel.org/stable/c/90c4d05780d47e14a50e11a7f17373104cd47d25

git.kernel.org/stable/c/b4903f7fdc484628d0b8022daf86e2439d3ab4db

git.kernel.org/stable/c/beb1e67a5ca8d69703c776db9000527f44c0c93c

git.kernel.org/stable/c/f17aae7c4009160f0630a91842a281773976a5bc