7.1
CVE-2025-21794
- EPSS 0.22%
- Veröffentlicht 27.02.2025 03:15:20
- Zuletzt bearbeitet 03.11.2025 21:19:10
- CVE-Watchlists
- Unerledigt
HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()
In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints() Syzbot[1] has detected a stack-out-of-bounds read of the ep_addr array from hid-thrustmaster driver. This array is passed to usb_check_int_endpoints function from usb.c core driver, which executes a for loop that iterates over the elements of the passed array. Not finding a null element at the end of the array, it tries to read the next, non-existent element, crashing the kernel. To fix this, a 0 element was added at the end of the array to break the for loop. [1] https://syzkaller.appspot.com/bug?extid=9c9179ac46169c56c1ad
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.6.76 < 6.6.79
Linux ≫ Linux Kernel Version >= 6.12.13 < 6.12.16
Linux ≫ Linux Kernel Version >= 6.13.2 < 6.13.4
Linux ≫ Linux Kernel Version6.14 Updaterc1
Linux ≫ Linux Kernel Version6.14 Updaterc2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.22% | 0.123 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
https://git.kernel.org/stable/c/0b43d98ff29be3144e86294486b1373b5df74c0e
https://git.kernel.org/stable/c/436f48c864186e9413d1b7c6e91767cc9e1a65b8
https://git.kernel.org/stable/c/73e36a699b9f46322ffb81f072a24e64f728dba7
https://git.kernel.org/stable/c/cdd9a1ea23ff1a272547217100663e8de4eada40
https://git.kernel.org/stable/c/f3ce05283f6cb6e19c220f5382def43dc5bd56b9
https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html