ACK: [SRU][N][PATCH 0/1] CVE-2024-46747
Guoqing Jiang
guoqing.jiang at canonical.com
Mon Oct 21 03:58:13 UTC 2024
Acked-by: Guoqing Jiang <guoqing.jiang at canonical.com>
On 10/16/24 20:37, Massimiliano Pellizzer wrote:
> [Impact]
>
> HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
>
> report_fixup for the Cougar 500k Gaming Keyboard was not verifying
> that the report descriptor size was correct before accessing it
>
> [Fix]
>
> Noble: Cherry picked from linux-6.10.y
> Jammy: Fixed
> Focal: Fixed
> Bionic: Not affected
> Xenial: Not affected
>
> [Test Case]
>
> Compile tested only.
>
> [Where problems could occur]
>
> The fix affects the Cougar driver in the HID subsystem. An issue with
> the fix may result in misconfigured or unresponsive input devices.
>
> Camila Alvarez (1):
> HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
>
> drivers/hid/hid-cougar.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
More information about the kernel-team
mailing list