CVE-2023-4010 — Infinite Loop in Redhat Enterprise Linux

CWE-835 — Infinite Loop7 documents7 sources

Severity

4.6MEDIUMNVD

EPSS

0.0%

top 98.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Enterprise Linux

Timeline

PublishedJul 31

Description

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descriptor file, so it falls into an endless loop, resulting in a denial of service.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 0.9 | Impact: 3.6

Affected Packages0 packages

Also affects: Enterprise Linux 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-wjv9-48rg-r5cr: A flaw was found in the USB Host Controller Driver framework in the Linux kernel↗2023-07-31

▶

CVEList

Kernel: usb: hcd: malformed usb descriptor leads to infinite loop in usb_giveback_urb()↗2023-07-31

▶

OSV

CVE-2023-4010: A flaw was found in the USB Host Controller Driver framework in the Linux kernel↗2023-07-31

▶

📋Vendor Advisories

Red Hat

kernel: usb: hcd: malformed USB descriptor leads to infinite loop in usb_giveback_urb()↗2023-07-13

▶

Debian

CVE-2023-4010: linux - A flaw was found in the USB Host Controller Driver framework in the Linux kernel...↗2023

▶

💬Community

Bugzilla

CVE-2023-4010 kernel: usb: hcd: malformed USB descriptor leads to infinite loop in usb_giveback_urb()↗2023-07-31

▶