NACK: [SRU][N][PATCH 0/1] CVE-2024-50302
Manuel Diewald
manuel.diewald at canonical.com
Thu Mar 13 15:27:08 UTC 2025
On Mon, Mar 10, 2025 at 08:07:13AM +0100, Juerg Haefliger wrote:
> https://ubuntu.com/security/CVE-2024-50302
>
> [ Impact ]
>
> Potential kernel memory leak via specially-crafted report in HID core.
>
>
> [ Test Case ]
>
> Compile-tested only.
>
>
> [ Where Problems Could Occur ]
>
> Changes in HID core only. Potential problems could surface when using
> HID devices.
>
>
> Jiri Kosina (1):
> HID: core: zero-initialize the report buffer
>
> drivers/hid/hid-core.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
> --
> 2.43.0
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
This is already applied as part of upstream stable patchset 2025-02-27
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/2100292
--
Manuel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20250313/e46a779a/attachment.sig>
More information about the kernel-team
mailing list