PT-2022-7641 · Linux+8 · Linux Kernel+8

Syzbot

Published

2022-03-14

Updated

2025-09-29

CVE-2022-48836

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17.0-rc6-syzkaller-00226-g07ebd38a0da2

Description The issue is related to a wrong endpoint type in the usb submit urb() function, which can cause a warning. The problem arises because there was a check for the number of endpoints but not for the type of endpoint. This can lead to a denial of service. The usb find common endpoints() helper is used to fix the issue by properly checking endpoint types.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the wrong endpoint type check in the usb submit urb() function. Specifically, update to a version later than 5.17.0-rc6-syzkaller-00226-g07ebd38a0da2. As a temporary workaround, consider disabling the aiptek open() function until a patch is available.

Exploit

Fix

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALSA-2024:7000

ALSA-2024:7001

ALSA-2025_16880

BDU:2024-07635

CESA-2024_7000

CESA-2024_7001

CVE-2022-48836

INFSA-2024_7000

INFSA-2024_7001

OESA-2024-1944

OPENSUSE-SU-2024_2947-1

OPENSUSE-SU-2024_3249-1

RHSA-2024:7000

RHSA-2024:7001

RHSA-2024_7000

RHSA-2024_7001

RLSA-2024:7001

SUSE-SU-2024:2892-1

SUSE-SU-2024:2894-1

SUSE-SU-2024:2901-1

SUSE-SU-2024:2902-1

SUSE-SU-2024:2929-1

SUSE-SU-2024:2939-1

SUSE-SU-2024:2940-1

SUSE-SU-2024:2947-1

SUSE-SU-2024:3225-1

SUSE-SU-2024:3249-1

USN-7039-1

Affected Products

Almalinux

Astra Linux

Centos

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2022-7641 · Linux+8 · Linux Kernel+8

CVE-2022-48836

Weakness Enumeration

Related Identifiers

Affected Products

References · 1914