In the Linux kernel, the following vulnerability has been resolved:
HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure
Presently, if the force feedback initialisation fails when probing the
Logitech G920 Driving Force Racing Wheel for Xbox One, an error number
will be returned and propagated before the userspace infrastructure
(sysfs and /dev/input) has been torn down. If userspace ignores the
errors and continues to use its references to these dangling entities, a
UAF will promptly follow.
We have 2 options; continue to return the error, but ensure that all of
the infrastructure is torn down accordingly or continue to treat this
condition as a warning by emitting the message but returning success.
It is thought that the original author's intention was to emit the
warning but keep the device functional, less the force feedback feature,
so let's go with that.
A use-after-free vulnerability exists in the Linux kernel's Logitech HID driver when force feedback initialization fails during device probing. The vulnerability allows userspace to access dangling references to sysfs and /dev/input entities, potentially leading to memory corruption or system crash.
تحدث هذه الثغرة في برنامج تشغيل Logitech HID بنواة Linux عندما يفشل تهيئة ميزة التغذية الراجعة للقوة أثناء فحص جهاز Logitech G920. يمكن للمستخدمين الوصول إلى مراجع معلقة في sysfs و /dev/input، مما قد يؤدي إلى تلف الذاكرة أو انهيار النظام.
A use-after-free vulnerability in Linux kernel Logitech HID driver occurs when force feedback initialization fails. Userspace can access freed memory references through sysfs and /dev/input, potentially causing system instability or privilege escalation.
Update the Linux kernel to the latest patched version that properly handles force feedback initialization failures by ensuring userspace infrastructure is correctly torn down or treating the condition as a non-fatal warning. Apply patches from your Linux distribution's security updates.
قم بتحديث نواة Linux إلى أحدث إصدار مصحح يتعامل بشكل صحيح مع فشل تهيئة التغذية الراجعة من خلال التأكد من تفكيك البنية التحتية لمساحة المستخدم بشكل صحيح. طبق التصحيحات من تحديثات الأمان الخاصة بتوزيعة Linux الخاصة بك.