• caglararli@hotmail.com
  • 05386281520

CVE-2023-52477 | Linux Kernel up to 6.5.7 USB drivers/usb/core/hub.c usb_get_bos_descriptor null pointer dereference

Çağlar Arlı      -    26 Views

CVE-2023-52477 | Linux Kernel up to 6.5.7 USB drivers/usb/core/hub.c usb_get_bos_descriptor null pointer dereference

A vulnerability classified as problematic has been found in Linux Kernel up to 6.5.7. This affects the function usb_get_bos_descriptor of the file drivers/usb/core/hub.c of the component USB. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2023-52477. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.