CVE-2024-57993

Feb. 27, 2025, 2:15 a.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check syzbot has found a type mismatch between a USB pipe and the transfer endpoint, which is triggered by the hid-thrustmaster driver[1]. There is a number of similar, already fixed issues [2]. In this case as in others, implementing check for endpoint type fixes the issue. [1] https://syzkaller.appspot.com/bug?extid=040e8b3db6a96908d470 [2] https://syzkaller.appspot.com/bug?extid=348331f63b034f89b622

Product(s) Impacted

Product Versions
Linux kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/220883fba32549a34f0734e4859d07f4dcd56992
https://git.kernel.org/stable/c/50420d7c79c37a3efe4010ff9b1bb14bc61ebccf
https://git.kernel.org/stable/c/816e84602900f7f951458d743fa12769635ebfd5
https://git.kernel.org/stable/c/ae730deded66150204c494282969bfa98dc3ae67
https://git.kernel.org/stable/c/e5bcae4212a6a4b4204f46a1b8bcba08909d2007

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-02-27
CVE-2024-57993

Timeline

Published: Feb. 27, 2025, 2:15 a.m.
Last Modified: Feb. 27, 2025, 2:15 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.