Improper locking in Linux kernel gadget udc driver

1) Improper locking

EUVDB-ID: #VU93464

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-35822

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the usb_ep_queue() function in drivers/usb/gadget/udc/core.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links

http://git.kernel.org/stable/c/2b002c308e184feeaeb72987bca3f1b11e5f70b8
http://git.kernel.org/stable/c/68d951880d0c52c7f13dcefb5501b69b8605ce8c
http://git.kernel.org/stable/c/3e944ddc17c042945d983e006df7860687a8849a
http://git.kernel.org/stable/c/df5cbb908f1687e8ab97e222a16b7890d5501acf
http://git.kernel.org/stable/c/f74c5e0b54b02706d9a862ac6cddade30ac86bcf
http://git.kernel.org/stable/c/99731076722eb7ed26b0c87c879da7bb71d24290
http://git.kernel.org/stable/c/36177c2595df12225b95ce74eb1ac77b43d5a58c
http://git.kernel.org/stable/c/30511676eb54d480d014352bf784f02577a10252
http://git.kernel.org/stable/c/2a587a035214fa1b5ef598aea0b81848c5b72e5e
http://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
http://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.