oss-sec mailing list archives

CVE request: Linux kernel: chipidea: allow disabling streaming in host mode

From: P J P <ppandit () redhat com>
Date: Fri, 3 May 2013 16:52:36 +0530 (IST)

  Hello,

Linux kernel built with the ChipIdia Highspeed Dual Role Controller(CONFIG_USB_CHIPIDEA) along with the ChipIdea host controller(CONFIG_USB_CHIPIDEA_HOST) modules, is vulnerable to a kernel crash. It occurswhile streaming content over network via USB/Ethernet adapter


A user/program could use this flaw to crash the kernel resulting in DoS.

Upstream fix:
-------------
 -> https://git.kernel.org/linus/929473ea05db455ad88cdc081f2adc556b8dc48f

Reference:
----------
 -> https://bugzilla.redhat.com/show_bug.cgi?id=959210

Thank you.
--
Prasad J Pandit / Red Hat Security Response Team
DB7A 84C5 D3F9 7CD1 B5EB  C939 D048 7860 3655 602B

Current thread:

CVE request: Linux kernel: chipidea: allow disabling streaming in host mode P J P (May 03)
- Re: CVE request: Linux kernel: chipidea: allow disabling streaming in host mode Kurt Seifried (May 04)
  - Re: CVE request: Linux kernel: chipidea: allow disabling streaming in host mode Marcus Meissner (May 06)
    - Re: CVE request: Linux kernel: chipidea: allow disabling streaming in host mode Greg KH (May 06)