๐Ÿ” CVE Alert

CVE-2024-50268

HIGH 7.1

usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd()

CVSS Score
7.1
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() The "*cmd" variable can be controlled by the user via debugfs. That means "new_cam" can be as high as 255 while the size of the uc->updated[] array is UCSI_MAX_ALTMODES (30). The call tree is: ucsi_cmd() // val comes from simple_attr_write_xsigned() -> ucsi_send_command() -> ucsi_send_command_common() -> ucsi_run_command() // calls ucsi->ops->sync_control() -> ucsi_ccg_sync_control()

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Nov 19, 2024
Last Updated May 11, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
170a6726d0e266f2c8f306e3d61715c32f4ee41e < d76923164705821aa1b01b8d9d1741f20c654ab4 170a6726d0e266f2c8f306e3d61715c32f4ee41e < 8f47984b35f3be0cfc652c2ca358d5768ea3456b 170a6726d0e266f2c8f306e3d61715c32f4ee41e < 604314ecd682913925980dc955caea2d036eab5f 170a6726d0e266f2c8f306e3d61715c32f4ee41e < 69e19774f15e12dda6c6c58001d059e30895009b 170a6726d0e266f2c8f306e3d61715c32f4ee41e < 3a2ba841659a0f15102585120dea75d8d5209616 170a6726d0e266f2c8f306e3d61715c32f4ee41e < 7dd08a0b4193087976db6b3ee7807de7e8316f96
Linux / Linux
5.6

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/d76923164705821aa1b01b8d9d1741f20c654ab4 git.kernel.org: https://git.kernel.org/stable/c/8f47984b35f3be0cfc652c2ca358d5768ea3456b git.kernel.org: https://git.kernel.org/stable/c/604314ecd682913925980dc955caea2d036eab5f git.kernel.org: https://git.kernel.org/stable/c/69e19774f15e12dda6c6c58001d059e30895009b git.kernel.org: https://git.kernel.org/stable/c/3a2ba841659a0f15102585120dea75d8d5209616 git.kernel.org: https://git.kernel.org/stable/c/7dd08a0b4193087976db6b3ee7807de7e8316f96 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html