CVE-2023-53015

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: betop: check shape of output reports

betopff_init() only checks the total sum of the report counts for each report field to be at least 4, but hid_betopff_play() expects 4 report fields. A device advertising an output report with one field and 4 report counts would pass the check but crash the kernel with a NULL pointer dereference in hid_betopff_play().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < dbab4dba400d6ea9a9697fbbd287adbf7db1dac4affected
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < 7317326f685824c7c29bd80841fd18041af6bb73affected
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < d3065cc56221d1a5eda237e94eaf2a627b88ab79affected
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < 28fc6095da22dc88433d79578ae1c495ebe8ca43affected
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < 1a2a47b85cab50a3c146731bfeaf2d860f5344eeaffected
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < 07bc32e53c7bd5c91472cc485231ef6274db9b76affected
LinuxLinux52cd7785f3cdd2724f4efb5b21dbc75d6f9ccef4 < 3782c0d6edf658b71354a64d60aa7a296188fc90affected
LinuxLinux4.0affected
LinuxLinux0 < 4.0unaffected
LinuxLinux4.14.305 <= 4.14.*unaffected
LinuxLinux4.19.272 <= 4.19.*unaffected
LinuxLinux5.4.231 <= 5.4.*unaffected
LinuxLinux5.10.166 <= 5.10.*unaffected
LinuxLinux5.15.91 <= 5.15.*unaffected
LinuxLinux6.1.9 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References