CVE-2024-46747
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
report_fixup for the Cougar 500k Gaming Keyboard was not verifying that the report descriptor size was correct before accessing it
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < e239e44dcd419b13cf840e2a3a833204e4329714 | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < fac3cb3c6428afe2207593a183b5bc4742529dfd | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < 34185de73d74fdc90e8651cfc472bfea6073a13f | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < 890dde6001b651be79819ef7a3f8c71fc8f9cabf | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < e4a602a45aecd6a98b4b37482f5c9f8f67a32ddd | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < 30e9ce7cd5591be639b53595c95812f1a2afdfdc | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < 48b2108efa205f4579052c27fba2b22cc6ad8aa0 | affected |
| Linux | Linux | b8e759b8f6dab1c473c30ac12709095d0b81078e < a6e9c391d45b5865b61e569146304cff72821a5d | affected |
| Linux | Linux | 4.19 | affected |
| Linux | Linux | 0 < 4.19 | unaffected |
| Linux | Linux | 4.19.322 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.284 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.226 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.167 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.110 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.51 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.10 <= 6.10.* | unaffected |
| Linux | Linux | 6.11 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
References
- https://git.kernel.org/stable/c/e239e44dcd419b13cf840e2a3a833204e4329714
- https://git.kernel.org/stable/c/fac3cb3c6428afe2207593a183b5bc4742529dfd
- https://git.kernel.org/stable/c/34185de73d74fdc90e8651cfc472bfea6073a13f
- https://git.kernel.org/stable/c/890dde6001b651be79819ef7a3f8c71fc8f9cabf
- https://git.kernel.org/stable/c/e4a602a45aecd6a98b4b37482f5c9f8f67a32ddd
- https://git.kernel.org/stable/c/30e9ce7cd5591be639b53595c95812f1a2afdfdc
- https://git.kernel.org/stable/c/48b2108efa205f4579052c27fba2b22cc6ad8aa0
- https://git.kernel.org/stable/c/a6e9c391d45b5865b61e569146304cff72821a5d
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.