PT-2022-6329 · Linux+4 · Linux Kernel+4

Rondreis

·

Published

2022-09-24

·

Updated

2025-07-28

·

CVE-2022-3903

CVSS v2.0

4.9

Medium

VectorAV:L/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to an incorrect read request flaw in the Infrared Transceiver USB driver. This flaw can be exploited when a user attaches a malicious USB device, potentially allowing a local user to starve the system's resources, causing denial of service or crashing the system. The vulnerability is also related to the incorrect initialization of the URB (USB Request Block) control block.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-843

Related Identifiers

BDU:2023-00941
CVE-2022-3903
OESA-2022-2147
OESA-2023-1035
OESA-2023-1036
OPENSUSE-SU-2022_4503-1
OPENSUSE-SU-2022_4504-1
OPENSUSE-SU-2022_4574-1
OPENSUSE-SU-2022_4585-1
OPENSUSE-SU-2022_4613-1
OPENSUSE-SU-2022_4616-1
OPENSUSE-SU-2022_4617-1
SUSE-SU-2022:4503-1
SUSE-SU-2022:4504-1
SUSE-SU-2022:4505-1
SUSE-SU-2022:4561-1
SUSE-SU-2022:4566-1
SUSE-SU-2022:4573-1
SUSE-SU-2022:4574-1
SUSE-SU-2022:4585-1
SUSE-SU-2022:4589-1
SUSE-SU-2022:4611-1
SUSE-SU-2022:4613-1
SUSE-SU-2022:4614-1
SUSE-SU-2022:4615-1
SUSE-SU-2022:4616-1
SUSE-SU-2022:4617-1
SUSE-SU-2023:0416-1
SUSE-SU-2025:02264-1
SUSE-SU-2025:02308-1
SUSE-SU-2025:02312-1
SUSE-SU-2025:02320-1
SUSE-SU-2025:02321-1
SUSE-SU-2025:02322-1
SUSE-SU-2025:02334-1
SUSE-SU-2025:02537-1
SUSE-SU-2025:2264-1
SUSE-SU-2025_02264-1
SUSE-SU-2025_02308-1
SUSE-SU-2025_02312-1
SUSE-SU-2025_02334-1
SUSE-SU-2025_02537-1
USN-6001-1
USN-6013-1
USN-6014-1
USN-6027-1
USN-6029-1
USN-6030-1
USN-6031-1
USN-6093-1
USN-6222-1
USN-6256-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Suse
Ubuntu