CVE-2024-44960

usb: gadget: core: Check for unset descriptor

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

usb: gadget: core: Check for unset descriptor

Make sure the descriptor has been set before looking at maxpacket.
This fixes a null pointer panic in this case.

This may happen if the gadget doesn't properly set up the endpoint
for the current speed, or the gadget descriptors are malformed and
the descriptor for the speed/endpoint are not found.

No current gadget driver is known to have this problem, but this
may cause a hard-to-find bug during development of new gadgets.

*Credits: N/A

CVSS Scores

Red Hatv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-21 CVE Reserved
2024-09-04 CVE Published
2024-10-05 EPSS Updated
2024-11-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-476: NULL Pointer Dereference

CAPEC

References (17)

URL	Tag	Source
https://git.kernel.org/stable/c/d1c188d330ca33cc35d1590441ba276f31144299	Vuln. Introduced
https://git.kernel.org/stable/c/54f83b8c8ea9b22082a496deadf90447a326954e	Vuln. Introduced
https://git.kernel.org/stable/c/d7e3f2fe01372eb914d0e451f0e7a46cbcb98f9e	Vuln. Introduced
https://git.kernel.org/stable/c/85c9ece11264499890d0e9f0dee431ac1bda981c	Vuln. Introduced
https://git.kernel.org/stable/c/fc71e39a6c07440e6968227f3db1988f45d7a7b7	Vuln. Introduced
https://git.kernel.org/stable/c/94f5de2eefae22c449e367c2dacafe869af73e3f	Vuln. Introduced
https://git.kernel.org/stable/c/8212b44b7109bd30dbf7eb7f5ecbbc413757a7d7	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/ba15815dd24cc5ec0d23e2170dc58c7db1e03b4a	2024-08-19
https://git.kernel.org/stable/c/df8e734ae5e605348aa0ca2498aedb73e815f244	2024-08-19
https://git.kernel.org/stable/c/7cc9ebcfe58be22f18056ad8bc6272d120bdcb3e	2024-08-19
https://git.kernel.org/stable/c/50c5248b0ea8aae0529fdf28dac42a41312d3b62	2024-08-19
https://git.kernel.org/stable/c/a0362cd6e503278add954123957fd47990e8d9bf	2024-08-14
https://git.kernel.org/stable/c/1a9df57d57452b104c46c918569143cf21d7ebf1	2024-08-14
https://git.kernel.org/stable/c/716cba46f73a92645cf13eded8d257ed48afc2a4	2024-08-14
https://git.kernel.org/stable/c/973a57891608a98e894db2887f278777f564de18	2024-07-31

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-44960	2024-11-12
https://bugzilla.redhat.com/show_bug.cgi?id=2309791	2024-11-12

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.82 < 4.19.320 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.82 < 4.19.320"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 5.4.282 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 5.4.282"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 5.10.224 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 5.10.224"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 5.15.165 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 5.15.165"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 6.1.105 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 6.1.105"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 6.6.46 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 6.6.46"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 6.10.5 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 6.10.5"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4 < 6.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4 < 6.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.16.80 Search vendor "Linux" for product "Linux Kernel" and version "3.16.80"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.4.199 Search vendor "Linux" for product "Linux Kernel" and version "4.4.199"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.9.199 Search vendor "Linux" for product "Linux Kernel" and version "4.9.199"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.14.152 Search vendor "Linux" for product "Linux Kernel" and version "4.14.152"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.3.9 Search vendor "Linux" for product "Linux Kernel" and version "5.3.9"		en		Affected