5.5

CVE-2023-52853

hid: cp2112: Fix duplicate workqueue initialization

In the Linux kernel, the following vulnerability has been resolved:

hid: cp2112: Fix duplicate workqueue initialization

Previously the cp2112 driver called INIT_DELAYED_WORK within
cp2112_gpio_irq_startup, resulting in duplicate initilizations of the
workqueue on subsequent IRQ startups following an initial request. This
resulted in a warning in set_work_data in workqueue.c, as well as a rare
NULL dereference within process_one_work in workqueue.c.

Initialize the workqueue within _probe instead.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.10 < 4.19.299
LinuxLinux Kernel Version >= 4.20 < 5.4.261
LinuxLinux Kernel Version >= 5.5 < 5.10.201
LinuxLinux Kernel Version >= 5.11 < 5.15.139
LinuxLinux Kernel Version >= 5.16 < 6.1.63
LinuxLinux Kernel Version >= 6.2 < 6.5.12
LinuxLinux Kernel Version >= 6.6 < 6.6.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.148
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/012d0c66f9392a99232ac28217229f32dd3a70cf
Patch
https://git.kernel.org/stable/c/3d959406c8fff2334d83d0c352d54fd6f5b2e7cd
Patch
https://git.kernel.org/stable/c/727203e6e7e7020e1246fc1628cbdb8d90177819
Patch
https://git.kernel.org/stable/c/bafb12b629b7c3ad59812dd1ac1b0618062e0e38
Patch
https://git.kernel.org/stable/c/df0daac2709473531d6a3472997cc65301ac06d6
Patch
https://git.kernel.org/stable/c/e3c2d2d144c082dd71596953193adf9891491f42
Patch
https://git.kernel.org/stable/c/eb1121fac7986b30915ba20c5a04cc01fdcf160c
Patch
https://git.kernel.org/stable/c/fb5718bc67337dde1528661f419ffcf275757592
Patch