PT-2022-19369 · Openrazer+1 · Openrazer+1
Tallossos
·
Published
2022-05-20
·
Updated
2025-04-24
·
CVE-2022-29021
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
OpenRazer versions up to v3.3.0
Description
A buffer overflow issue exists in the razerkbd driver, allowing attackers to cause a Denial of Service (DoS) and possibly escalate their privileges via a crafted buffer sent to the "matrix custom frame" device.
Recommendations
For OpenRazer versions up to v3.3.0, update to a version later than v3.3.0 to resolve the issue. As a temporary workaround, consider restricting access to the "matrix custom frame" device to minimize the risk of exploitation.
Exploit
Fix
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Openrazer