Linux Kernel USB Type-C Partner Unregistration Vulnerability

Vulnerability

A vulnerability in the Linux kernel's USB Type-C handling has been addressed. The issue involved invalid USB device pointers being used after a Type-C partner disconnected. The vulnerability has been resolved by clearing these pointers upon partner unregistration, ensuring a clean state for future connections.

Impact

The vulnerability could lead to the use of invalid USB device pointers, potentially causing errors or undefined behavior in the handling of USB connections.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel USB Type-C Partner Unregistration Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating