The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device. Upstream fix: https://patchwork.kernel.org/patch/9963527/ Bug report: https://groups.google.com/forum/#!msg/syzkaller/WlUAVfDvpRk/1V1xuEA4AgAJ
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1510854]