sr9800:添加对 usbnet_get_endpoints 的检查 (CVE-2024-26651)

CVE编号

CVE-2024-26651

利用情况

暂无

补丁情况

N/A

披露时间

2024-03-27
漏洞描述
In the Linux kernel, the following vulnerability has been resolved:

sr9800: Add check for usbnet_get_endpoints

Add check for usbnet_get_endpoints() and return the error if it fails
in order to transfer the error.
解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接
https://git.kernel.org/stable/c/07161b2416f740a2cb87faa5566873f401440a61
https://git.kernel.org/stable/c/276873ae26c8d75b00747c1dadb9561d6ef20581
https://git.kernel.org/stable/c/424eba06ed405d557077339edb19ce0ebe39e7c7
https://git.kernel.org/stable/c/6b4a39acafaf0186ed8e97c16e0aa6fca0e52009
https://git.kernel.org/stable/c/8a8b6a24684bc278036c3f159f7b3a31ad89546a
https://git.kernel.org/stable/c/9c402819620a842cbfe39359a3ddfaac9adc8384
https://git.kernel.org/stable/c/e39a3a14eafcf17f03c037290b78c8f483529028
https://git.kernel.org/stable/c/efba65777f98457773c5b65e3135c6132d3b015f
https://git.kernel.org/stable/c/f546cc19f9b82975238d0ba413adc27714750774
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
受影响软件情况
# 类型 厂商 产品 版本 影响面
1
运行在以下环境
系统 fedora_38 kernel * Up to
(excluding)
6.7.11-100.fc38
运行在以下环境
系统 fedora_39 kernel * Up to
(excluding)
6.7.11-200.fc39
CVSS3评分
N/A
  • 攻击路径
    N/A
  • 攻击复杂度
    N/A
  • 权限要求
    N/A
  • 影响范围
    N/A
  • 用户交互
    N/A
  • 可用性
    N/A
  • 保密性
    N/A
  • 完整性
    N/A
N/A
CWE-ID 漏洞类型
阿里云安全产品覆盖情况