CVE-2023-54299
usb: typec: bus: verify partner exists in typec_altmode_attention
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
30 dez 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In the Linux kernel, the following vulnerability has been resolved:
usb: typec: bus: verify partner exists in typec_altmode_attention
Some usb hubs will negotiate DisplayPort Alt mode with the device
but will then negotiate a data role swap after entering the alt
mode. The data role swap causes the device to unregister all alt
modes, however the usb hub will still send Attention messages
even after failing to reregister the Alt Mode. type_altmode_attention
currently does not verify whether or not a device's altmode partner
exists, which results in a NULL pointer error when dereferencing
the typec_altmode and typec_altmode_ops belonging to the altmode
partner.
Verify the presence of a device's altmode partner before sending
the Attention message to the Alt Mode driver.
Produtos afetados
Linux · LinuxReferências
https://git.kernel.org/stable/c/0ad6bad31da692f8d7acacab07eabe7586239ae0https://git.kernel.org/stable/c/0d3b5fe47938e9c451466845304a2bd74e967a80https://git.kernel.org/stable/c/1101867a1711c27d8bbe0e83136bec47f8c1ca2ahttps://git.kernel.org/stable/c/38e1f2ee82bacbbfded8f1c06794a443d038d054https://git.kernel.org/stable/c/5f71716772b88cbe0e1788f6a38d7871aff2120bhttps://git.kernel.org/stable/c/d49547950bf7f3480d6ca05fe055978e5f0d9e5bhttps://git.kernel.org/stable/c/f23643306430f86e2f413ee2b986e0773e79da31