CVE-2025-68342

The URB received in gsusbreceivebulkcallback() contains a struct gshostframe. The length of the data after the header depends on the gshostframe hf::flags and the active device features (e.g. time stamping).

Introduce a new function gsusbgetminimumlength() and check that we have at least received the required amount of data before accessing it. Only copy the data to that skb that has actually been received.

[mkl: rename gsusbgetminimumlength() -> +gsusbgetminimumrx_length()]

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68342.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

d08e973a77d128b25e01a08c34d89593fdf222da

Fixed

4ffac725154cf6a253f5e6aa0c8946232b6a0af5

Fixed

ad55004a3cb5b41ef78aa6c09e7bc5a489ba652b

Fixed

fb0c7c77a7ae3a2c3404b7d0173b8739a754b513

Fixed

395d988f93861101ec89d0dd9e3b876ae9392a5b

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68342.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.16.0

Fixed

6.6.119

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.61

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.17.11

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68342.json"