vulnerability

Ubuntu: USN-6976-1 (CVE-2021-46906): Linux kernel vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:N)	Feb 26, 2024	Nov 19, 2024	Aug 18, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

Feb 26, 2024

Added

Nov 19, 2024

Modified

Aug 18, 2025

Description

In the Linux kernel, the following vulnerability has been resolved:

HID: usbhid: fix info leak in hid_submit_ctrl

In hid_submit_ctrl(), the way of calculating the report length doesn't
take into account that report->size can be zero. When running the
syzkaller reproducer, a report of size 0 causes hid_submit_ctrl) to
calculate transfer_buffer_length as 16384. When this urb is passed to
the usb core layer, KMSAN reports an info leak of 16384 bytes.

To fix this, first modify hid_report_len() to account for the zero
report size case by using DIV_ROUND_UP for the division. Then, call it
from hid_submit_ctrl().

Solutions

ubuntu-upgrade-linux-image-4-4-0-1135-awsubuntu-upgrade-linux-image-4-4-0-1136-kvmubuntu-upgrade-linux-image-4-4-0-1173-awsubuntu-upgrade-linux-image-4-4-0-258-genericubuntu-upgrade-linux-image-4-4-0-258-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-lts-xenial

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today