5.5

CVE-2025-38540

HID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras

In the Linux kernel, the following vulnerability has been resolved:

HID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras

The Chicony Electronics HP 5MP Cameras (USB ID 04F2:B824 & 04F2:B82C)
report a HID sensor interface that is not actually implemented.
Attempting to access this non-functional sensor via iio_info causes
system hangs as runtime PM tries to wake up an unresponsive sensor.

Add these 2 devices to the HID ignore list since the sensor interface is
non-functional by design and should not be exposed to userspace.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.8 < 5.4.296
LinuxLinux Kernel Version >= 5.5 < 5.10.240
LinuxLinux Kernel Version >= 5.11 < 5.15.189
LinuxLinux Kernel Version >= 5.16 < 6.1.146
LinuxLinux Kernel Version >= 6.2 < 6.6.99
LinuxLinux Kernel Version >= 6.7 < 6.12.39
LinuxLinux Kernel Version >= 6.13 < 6.15.7
LinuxLinux Kernel Version6.16 Updaterc1
LinuxLinux Kernel Version6.16 Updaterc2
LinuxLinux Kernel Version6.16 Updaterc3
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.045
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/35f1a5360ac68d9629abbb3930a0a07901cba296
Patch
https://git.kernel.org/stable/c/7ac00f019698f614a49cce34c198d0568ab0e1c2
Patch
https://git.kernel.org/stable/c/1b297ab6f38ca60a4ca7298b297944ec6043b2f4
Patch
https://git.kernel.org/stable/c/2b0931eee48208c25bb77486946dea8e96aa6a36
Patch
https://git.kernel.org/stable/c/3ce1d87d1f5d80322757aa917182deb7370963b9
Patch
https://git.kernel.org/stable/c/c72536350e82b53a1be0f3bfdf1511bba2827102
Patch
https://git.kernel.org/stable/c/a2a91abd19c574b598b1c69ad76ad9c7eedaf062
Patch
https://git.kernel.org/stable/c/54bae4c17c11688339eb73a04fd24203bb6e7494
Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Third Party Advisory