4303 – CVE-2022-4662

Bug 4303 - CVE-2022-4662

Summary: CVE-2022-4662

Status:	RESOLVED FIXED

Alias:	None

Product:	ANCK 5.10 Dev
Classification:	ANCK
Component:	drivers (show other bugs)	drivers
Sub Component:
Version:	unspecified
Hardware:	All Linux

Importance:	P3-Medium S3-normal
Target Milestone:	---
Assignee:	GuixinLiu
QA Contact:	shuming

URL:
Whiteboard:
Keywords:	CVE

Depends on:
Blocks:

Reported:	2023-03-02 15:35 UTC by hujian1
Modified:	2023-07-05 15:37 UTC (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description hujian1 2023-03-02 15:35:35 UTC

Description:
A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.

Upstream:
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=9c6d778800b921bde3bff3cff5003d1650f942d1

Comment 1 maqiao alibaba_cloud_group

2023-07-05 15:37:58 UTC

merged: https://gitee.com/anolis/cloud-kernel/pulls/1344