CVE-2023-4010

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb giveback urb function has a logic loophole in its implementation, causing it to fall into an endless loop when processing a specific malformed descriptor file. This results in a denial of service. The issue is related to the inappropriate judgment condition of the goto statement, preventing the function from returning properly.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.