CVE-2024-46747

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup

report_fixup for the Cougar 500k Gaming Keyboard was not verifying that the report descriptor size was correct before accessing it

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < e239e44dcd419b13cf840e2a3a833204e4329714affected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < fac3cb3c6428afe2207593a183b5bc4742529dfdaffected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < 34185de73d74fdc90e8651cfc472bfea6073a13faffected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < 890dde6001b651be79819ef7a3f8c71fc8f9cabfaffected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < e4a602a45aecd6a98b4b37482f5c9f8f67a32dddaffected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < 30e9ce7cd5591be639b53595c95812f1a2afdfdcaffected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < 48b2108efa205f4579052c27fba2b22cc6ad8aa0affected
LinuxLinuxb8e759b8f6dab1c473c30ac12709095d0b81078e < a6e9c391d45b5865b61e569146304cff72821a5daffected
LinuxLinux4.19affected
LinuxLinux0 < 4.19unaffected
LinuxLinux4.19.322 <= 4.19.*unaffected
LinuxLinux5.4.284 <= 5.4.*unaffected
LinuxLinux5.10.226 <= 5.10.*unaffected
LinuxLinux5.15.167 <= 5.15.*unaffected
LinuxLinux6.1.110 <= 6.1.*unaffected
LinuxLinux6.6.51 <= 6.6.*unaffected
LinuxLinux6.10.10 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References