The cp2112_gpio_direction_input function in drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x prior to 4.9.9 does not have the expected EIO error status for a zero-length report, which allows local users to have an unspecified impact via unknown vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 4.9.1 |
||
linux linux kernel 4.9.3 |
||
linux linux kernel 4.9.4 |
||
linux linux kernel 4.9.5 |
||
linux linux kernel 4.9.6 |
||
linux linux kernel 4.9.8 |
||
linux linux kernel 4.9 |
||
linux linux kernel 4.9.2 |