Описание
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
Отчет
There was no shipped kernel version that was seen affected by this problem. These files are not built in our source code.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel-rt | Not affected | ||
| Red Hat Enterprise Linux 9 | kernel | Not affected | ||
| Red Hat Enterprise Linux 9 | kernel-rt | Not affected |
Показывать по
10
Ссылки на источники
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=2053548kernel: use-after-free in dev->buf release in drivers/usb/gadget/legacy/inode.c
EPSS
Процентиль: 14%
0.00047
Низкий
6.2 Medium
CVSS3
Связанные уязвимости
CVSS3: 7.8
ubuntu
почти 4 года назад
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
CVSS3: 7.8
nvd
почти 4 года назад
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
CVSS3: 7.8
msrc
почти 4 года назад
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
CVSS3: 7.8
debian
почти 4 года назад
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 m ...
CVSS3: 7.8
github
почти 4 года назад
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
EPSS
Процентиль: 14%
0.00047
Низкий
6.2 Medium
CVSS3