Linux Kernel sisusbvga Driver Endpoint Check Vulnerability

A vulnerability in the Linux kernel's sisusbvga USB video driver has been addressed. The issue arose because the driver failed to verify whether the USB endpoints it utilized were present and had the correct types. This oversight could potentially lead to improper handling of USB requests, as demonstrated by the syzbot fuzzer, which triggered a warning about a bogus USB transfer.

Impact

Exploitation of this vulnerability could cause the driver to mismanage USB transfers, potentially leading to undefined behavior or crashes.

Reproduction

The vulnerability can be reproduced by using the syzbot fuzzer, which will send crafted USB requests to the sisusbvga driver. This will provoke a warning about an invalid USB transfer, indicating that the driver did not properly check the endpoints before use.

Remediation

Users can update to the latest version of the Linux kernel, where this vulnerability has been fixed. Instructions for updating the kernel can be found in the documentation for your specific Linux distribution.