1437435 – (CVE-2017-7273) CVE-2017-7273 kernel: HID: integer underflow in cp_report_fixup() (drivers/hid/hid-cypress.c)

Bug 1437435 (CVE-2017-7273) - CVE-2017-7273 kernel: HID: integer underflow in cp_report_fixup() (drivers/hid/hid-cypress.c)

Summary: CVE-2017-7273 kernel: HID: integer underflow in cp_report_fixup() (drivers/hi...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2017-7273
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1698228 1698229
Blocks:	1697539
TreeView+	depends on / blocked

Reported:	2017-03-30 10:23 UTC by Martin Prpič
Modified:	2021-10-27 10:52 UTC (History)
CC List:	28 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2021-10-27 10:52:14 UTC
Embargoed:

Attachments	(Terms of Use)

Description Martin Prpič 2017-03-30 10:23:22 UTC

An integer underflow flaw was found in the way the Linux kernel handled crafted Cypress HID (Human Interface Device) reports. An attacker with physical access to the system could use this flaw to crash the system and thus cause a denial of service (DoS).

An upstream patch:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1ebb71143758f45dc0fa76e2f48429e13b16d110

Note You need to log in before you can comment on or make changes to this bug.

aquini
bhu
dhoward
fhrbata
gansalmon
hwkernel-mgr
iboverma
ichavero
itamar
jforbes
jkacur
jonathan
jross
jwboyer
kernel-maint
kernel-mgr
lgoncalv
madhu.chinakonda
mchehab
mcressma
nmurray
pholasek
rt-maint
rvrbovsk
slawomir
vdronov
williams
yozone