Gnome · Gnome Settings Daemon · CVE-2024-38394
**Name of the Vulnerable Software and Affected Versions**
GNOME Settings Daemon versions through 46.0
**Description**
Mismatches in interpreting USB authorization policy between GNOME Settings Daemon and the Linux kernel's underlying device matching logic allow a physically proximate attacker to access some unintended Linux kernel USB functionality, such as USB device-specific kernel modules and filesystem implementations.
**Recommendations**
For GNOME Settings Daemon versions through 46.0, consider this issue as part of a new feature implementation rather than a vulnerability fix, as indicated by the GSD supplier. At the moment, there is no information about a newer version that contains a fix for this issue.