active/CVE-2021-39685


1
2
3
4
5
6
7
8
9
10
11
12
13
14

Description: Linux Kernel USB Gadget buffer overflow
References:
 https://www.openwall.com/lists/oss-security/2021/12/15/4
Notes:
 carnil> Fixed as well in 5.15.8 for 5.15.y.
Bugs:
upstream: released (5.16-rc5) [153a2d7e3350cc89d406ba2d35be8793a64c2038, 86ebbc11bb3f60908a51f3e41a17e3f477c2eaa3]
5.10-upstream-stable: released (5.10.85) [7193ad3e50e596ac2192531c58ba83b9e6d2444b, e4de8ca013f06ad4a0bf40420a291c23990e4131]
4.19-upstream-stable: released (4.19.221) [13e45e7a262dd96e8161823314679543048709b9, 32de5efd483db68f12233fbf63743a2d92f20ae4]
4.9-upstream-stable: released (4.9.293) [d2ca6859ea96c6d4c6ad3d6873a308a004882419, e4de8ca013f06ad4a0bf40420a291c23990e4131]
sid: released (5.15.5-2) [bugfix/all/USB-gadget-detect-too-big-endpoint-0-requests.patch, bugfix/all/USB-gadget-zero-allocate-endpoint-0-buffers.patch]
5.10-bullseye-security: pending (5.10.92-1)
4.19-buster-security: needed
4.9-stretch-security: needed