Description

In the Linux kernel, the following vulnerability has been resolved: HID: betop: fix slab-out-of-bounds Write in betop_probe Syzbot reported slab-out-of-bounds Write bug in hid-betopff driver. The problem is the driver assumes the device must have an input report but some malicious devices violate this assumption. So this patch checks hid_device's input is non empty before it's been used.

INFO

Published Date :

2024-05-21T15:03:58.021Z

Last Modified :

2025-12-18T11:37:23.874Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2021-47404 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-47404.

URL Resource
https://git.kernel.org/stable/c/1c83c38dec83d57bc18d0c01d82c413d3b34ccb9 cve-icon cve-icon
https://git.kernel.org/stable/c/1e4ce418b1cb1a810256b5fb3fd33d22d1325993 cve-icon cve-icon
https://git.kernel.org/stable/c/6fc4476dda58f6c00097c7ddec3b772513f57525 cve-icon cve-icon
https://git.kernel.org/stable/c/708107b80aa616976d1c5fa60ac0c1390749db5e cve-icon cve-icon
https://git.kernel.org/stable/c/a4faa7153b87fbcfe4be15f4278676f79ca6e019 cve-icon cve-icon
https://git.kernel.org/stable/c/bb8b72374db69afa25a5b65cf1c092860c6fe914 cve-icon cve-icon
https://git.kernel.org/stable/c/dedfc35a2de2bae9fa3da8210a05bfd515f83fee cve-icon cve-icon
https://git.kernel.org/stable/c/fe9bb925e7096509711660d39c0493a1546e9550 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052150-CVE-2021-47404-f851@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47404 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47404 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact