CVE-2025-21794Out-of-bounds Read in Linux

CWE-125Out-of-bounds ReadCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents6 sources
Severity
7.1HIGHNVD
EPSS
0.0%
top 98.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
LinuxLinux KernelDebian Linux+3 more
Timeline
PublishedFeb 27

Description

In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints() Syzbot[1] has detected a stack-out-of-bounds read of the ep_addr array from hid-thrustmaster driver. This array is passed to usb_check_int_endpoints function from usb.c core driver, which executes a for loop that iterates over the elements of the passed array. Not finding a null element at the end of the array, it tries to read the next, non-exist

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages7 packages

NVDlinux/linux_kernel6.6.766.6.79+3
Debianlinux/linux_kernel< 6.1.129-1+2
CVEListV5linux/linux220883fba32549a34f0734e4859d07f4dcd56992436f48c864186e9413d1b7c6e91767cc9e1a65b8+7

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-8868-h956-r68g: In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()2025-02-27
OSV
CVE-2025-21794: In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints() S2025-02-27

📋Vendor Advisories

3
Red Hat
kernel: HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()2025-02-27
Microsoft
HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()2025-02-11
Debian
CVE-2025-21794: linux - In the Linux kernel, the following vulnerability has been resolved: HID: hid-th...2025
CVE-2025-21794 — Out-of-bounds Read in Linux | cvebase