CVE-2022-49937

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc4-00208-g69cb6c6556ad

Description A vulnerability in the Linux kernel has been resolved. The issue was discovered through automatic kernel fuzzing, which led to a warning about an invalid pipe direction in the mceusb driver. The warning occurred because the driver sent an unusual read request on endpoint 0 without setting the USB DIR IN bit in the bRequestType field. The vulnerability can be avoided by converting the driver to use the new usb control msg recv() and usb control msg send() routines.

Recommendations For Linux kernel versions prior to 5.19.0-rc4-00208-g69cb6c6556ad, consider updating to a newer version that includes the fix, which converts the mceusb driver to use the new usb control msg recv() and usb control msg send() routines. As a temporary workaround, consider disabling the mceusb dev probe() function until a patch is available. Restrict access to the vulnerable mceusb driver to minimize the risk of exploitation. Avoid using the usb control msg() function in the affected API endpoint until the issue is resolved.