CVE-2025-21794

HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()

Description

In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints() Syzbot[1] has detected a stack-out-of-bounds read of the ep_addr array from hid-thrustmaster driver. This array is passed to usb_check_int_endpoints function from usb.c core driver, which executes a for loop that iterates over the elements of the passed array. Not finding a null element at the end of the array, it tries to read the next, non-existent element, crashing the kernel. To fix this, a 0 element was added at the end of the array to break the for loop. [1] https://syzkaller.appspot.com/bug?extid=9c9179ac46169c56c1ad

Category

7.1
CVSS
Severity: High
CVSS 3.1 •
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/436f48c864186e9413d1b7c6e91767cc9e1a65b8 patch
https://git.kernel.org/stable/c/f3ce05283f6cb6e19c220f5382def43dc5bd56b9 patch
https://git.kernel.org/stable/c/cdd9a1ea23ff1a272547217100663e8de4eada40 patch
https://git.kernel.org/stable/c/73e36a699b9f46322ffb81f072a24e64f728dba7 patch
https://git.kernel.org/stable/c/0b43d98ff29be3144e86294486b1373b5df74c0e patch

Frequently Asked Questions

What is the severity of CVE-2025-21794?
CVE-2025-21794 has been scored as a high severity vulnerability.
How to fix CVE-2025-21794?
To fix CVE-2025-21794, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-21794 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2025-21794 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-21794?
CVE-2025-21794 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.