5.5

CVE-2023-52703

net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path

In the Linux kernel, the following vulnerability has been resolved:

net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path

syzbot reported that act_len in kalmia_send_init_packet() is
uninitialized when passing it to the first usb_bulk_msg error path. Jiri
Pirko noted that it's pointless to pass it in the error path, and that
the value that would be printed in the second error path would be the
value of act_len from the first call to usb_bulk_msg.[1]

With this in mind, let's just not pass act_len to the usb_bulk_msg error
paths.

1: https://lore.kernel.org/lkml/Y9pY61y1nwTuzMOa@nanopsycho/
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.0.1 < 4.14.306
LinuxLinux Kernel Version >= 4.15 < 4.19.273
LinuxLinux Kernel Version >= 4.20 < 5.4.232
LinuxLinux Kernel Version >= 5.5 < 5.10.169
LinuxLinux Kernel Version >= 5.11 < 5.15.95
LinuxLinux Kernel Version >= 5.16 < 6.1.13
LinuxLinux Kernel Version3.0 Update-
LinuxLinux Kernel Version3.0 Updaterc4
LinuxLinux Kernel Version3.0 Updaterc5
LinuxLinux Kernel Version3.0 Updaterc6
LinuxLinux Kernel Version3.0 Updaterc7
LinuxLinux Kernel Version6.2 Updaterc1
LinuxLinux Kernel Version6.2 Updaterc2
LinuxLinux Kernel Version6.2 Updaterc3
LinuxLinux Kernel Version6.2 Updaterc4
LinuxLinux Kernel Version6.2 Updaterc5
LinuxLinux Kernel Version6.2 Updaterc6
LinuxLinux Kernel Version6.2 Updaterc7
LinuxLinux Kernel Version6.2 Updaterc8
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.164
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.

https://git.kernel.org/stable/c/02df3170c04a8356cd571ab9155a42f030190abc
Patch
https://git.kernel.org/stable/c/1b5de7d44890b78519acbcc80d8d1f23ff2872e5
Patch
https://git.kernel.org/stable/c/338f826d3afead6e4df521f7972a4bef04a72efb
Patch
https://git.kernel.org/stable/c/525bdcb0838d19d918c7786151ee14661967a030
Patch
https://git.kernel.org/stable/c/723ef7b66f37c0841f5a451ccbce47ee1641e081
Patch
https://git.kernel.org/stable/c/a753352622b4f3c0219e0e9c73114b2848ae6042
Patch
https://git.kernel.org/stable/c/c68f345b7c425b38656e1791a0486769a8797016
Patch