CVE-2021-47476
Published: May 22, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: comedi: ni_usb6501: fix NULL-deref in command paths The driver uses endpoint-sized USB transfer buffers but had no sanity checks on the sizes. This can lead to zero-size-pointer dereferences or overflowed transfer buffers in ni6501_port_command() and ni6501_counter_command() if a (malicious) device has smaller max-packet sizes than expected (or when doing descriptor fuzz testing). Add the missing sanity checks to probe().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a03bb00e50ab4c07107da58a52a0bff7943f360c - < 58478143771b20ab219937b1c30a706590a59224affected a03bb00e50ab4c07107da58a52a0bff7943f360c - < aa39738423503825625853b643b9e99d11c23816affected a03bb00e50ab4c07107da58a52a0bff7943f360c - < df7b1238f3b599a0b9284249772cdfd1ea83a632affected a03bb00e50ab4c07107da58a52a0bff7943f360c - < bc51111bf6e8e7b6cc94b133e4c291273a16acd1affected a03bb00e50ab4c07107da58a52a0bff7943f360c - < b0156b7c9649d8f55a2ce3d3258509f1b2a181c3+4 more versions |
Linux | Linux | affected 3.18unaffected 0 - < 3.18unaffected 4.4.292 - <= 4.4.*unaffected 4.9.290 - <= 4.9.*unaffected 4.14.255 - <= 4.14.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now