VOMIT (go/vomit) has received an external vulnerability report for the Linux kernel.
Advisory: CVE-2018-16276
Details: http://vomit.googleplex.com/advisory?id=CVE/CVE-2018-16276
CVSS severity score: 7.2/10.0
Description:
An issue was discovered in yurex_read in drivers/usb/misc/yurex.c in the Linux kernel before 4.17.7. Local attackers could use user access read/writes with incorrect bounds checking in the yurex USB driver to crash the kernel or potentially escalate privileges.
This bug was filed by http://go/vomit
Please contact us at vomit-team@google.com if you need any assistance.
Comment 1 by groeck@chromium.org
, Nov 9Labels: Security_Severity-High Security_Impact-None Pri-3
Owner: groeck@chromium.org
Status: WontFix (was: Untriaged)
Upstream commit f1e255d60ae66 ("USB: yurex: fix out-of-bounds uaccess in read handler"). chromeos-4.19 is not affected. Fixed in chromeos-4.4 and chromeos-4.14 with stable release merges. Not fixed in chromeos-3.18 and older. Marking as WontFix since CONFIG_USB_YUREX is not enabled in chromeos kernels.