PT-2025-54042 · Linux · Linux Kernel

Published

2025-12-30

Updated

2026-02-24

CVE-2023-54213

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc5-syzkaller-00199-g5af6ce704936

Description The Linux kernel driver for sisusbvga devices lacked checks to ensure the validity of USB endpoints, specifically their presence and type. This deficiency allowed the syzbot fuzzer to trigger a WARNING message, indicating a potential issue with USB transfer handling. The issue occurs during bulk out messages, potentially leading to unexpected behavior or system instability. The sisusb bulkout msg function and related functions like sisusb send bulk msg, sisusb send bridge packet, and sisusb do init gfxdevice are involved in the process.

Recommendations Update to version 6.2.0-rc5-syzkaller-00199-g5af6ce704936 or a later version to include the endpoint checks.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54213

SUSE-SU-2026:0263-1

SUSE-SU-2026:0316-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Linux Kernel

PT-2025-54042 · Linux · Linux Kernel

CVE-2023-54213

Related Identifiers

Affected Products

References · 1110