SB20241022208 - Buffer overflow in Linux kernel gadget function driver

Description

This security bulletin contains information about 1 security vulnerability.

1) Buffer overflow (CVE-ID: CVE-2022-48948)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the uvc_function_ep0_complete() function in drivers/usb/gadget/function/f_uvc.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/4972e3528b968665b596b5434764ff8fd9446d35
• https://git.kernel.org/stable/c/06fd17ee92c8f1704c7e54ec0fd50ae0542a49a5
• https://git.kernel.org/stable/c/bc8380fe5768c564f921f7b4eaba932e330b9e4b
• https://git.kernel.org/stable/c/b8fb1cba934ea122b50f13a4f9d6fc4fdc43d2be
• https://git.kernel.org/stable/c/c79538f32df12887f110dcd6b9c825b482905f24
• https://git.kernel.org/stable/c/6b41a35b41f77821db24f2d8f66794b390a585c5
• https://git.kernel.org/stable/c/7b1f773277a72f9756d47a41b94e43506cce1954
• https://git.kernel.org/stable/c/d1a92bb8d697f170d93fe922da763d7d156b8841
• https://git.kernel.org/stable/c/4c92670b16727365699fe4b19ed32013bab2c107
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.303
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.270
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.337
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.161
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.85
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.229
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.0.15
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.1
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2