A vulnerability was discovered in the linux kernels implementation of "GTCO tablet/digitizer"s version of parse_hid_report_descriptor in drivers. An attacker with local access could create a malicious USB device which must be inserted into the local usb port to send a crafted USB response that triggers an out-of-bounds write during generation of debugging messages. It is unlikely that this attack is effective or wide-spread as it requires specific usb hardware and physical access to the hardware to exploit. Reference: https://patchwork.kernel.org/patch/11040813/
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1731001]
Mitigation: It is possible to prevent the kernel from loading the affected code by blacklisting the gtco kernel module. Visit https://access.redhat.com/solutions/41278 for specifics.
This flaw is rated as moderate, it is unlikely that this attack vector will be frequently used by attackers to the complexity of physical access and creating a usb device that creates specific USB responses.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:2950 https://access.redhat.com/errata/RHSA-2024:2950
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:3138 https://access.redhat.com/errata/RHSA-2024:3138