UBUNTU-CVE-2021-42553
- Source
- https://ubuntu.com/security/CVE-2021-42553
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2021/UBUNTU-CVE-2021-42553.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2021-42553
- Related
- Published
- 2022-10-21T10:15:00Z
- Modified
- 2025-06-03T17:35:58Z
- Severity
-
- 6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A buffer overflow vulnerability in stm32mwusbhost of STMicroelectronics in versions before 3.5.1 allows an attacker to execute arbitrary code when the descriptor contains more endpoints than USBHMAXNUMENDPOINTS. The library is typically integrated when using a RTOS such as FreeRTOS on STM32 MCUs.
- References
Affected packages
Ubuntu:Pro:20.04:LTS / micropython
Package
- Name
- micropython
- Purl
- pkg:deb/ubuntu/micropython@1.12-1ubuntu0.1~esm1?arch=source&distro=esm-apps/focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.12-1ubuntu0.1~esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "1.12-1ubuntu0.1~esm1",
"binary_name": "micropython"
},
{
"binary_version": "1.12-1ubuntu0.1~esm1",
"binary_name": "micropython-dbgsym"
},
{
"binary_version": "1.12-1ubuntu0.1~esm1",
"binary_name": "micropython-doc"
}
]
}
Ubuntu:22.04:LTS / micropython
Package
- Name
- micropython
- Purl
- pkg:deb/ubuntu/micropython@1.17+ds-1.1ubuntu2?arch=source&distro=jammy
Ubuntu:Pro:22.04:LTS / micropython
Package
- Name
- micropython
- Purl
- pkg:deb/ubuntu/micropython@1.17+ds-1.1ubuntu2+esm1?arch=source&distro=esm-apps/jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.17+ds-1.1ubuntu2+esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "1.17+ds-1.1ubuntu2+esm1",
"binary_name": "micropython"
},
{
"binary_version": "1.17+ds-1.1ubuntu2+esm1",
"binary_name": "micropython-dbgsym"
},
{
"binary_version": "1.17+ds-1.1ubuntu2+esm1",
"binary_name": "micropython-doc"
}
]
}
Ubuntu:24.10 / micropython
Package
- Name
- micropython
- Purl
- pkg:deb/ubuntu/micropython@1.22.1+ds-1ubuntu0.24.10.1?arch=source&distro=oracular
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.22.1+ds-1ubuntu0.24.10.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "1.22.1+ds-1ubuntu0.24.10.1",
"binary_name": "micropython"
},
{
"binary_version": "1.22.1+ds-1ubuntu0.24.10.1",
"binary_name": "micropython-dbgsym"
},
{
"binary_version": "1.22.1+ds-1ubuntu0.24.10.1",
"binary_name": "micropython-doc"
}
]
}
Ubuntu:24.04:LTS / micropython
Package
- Name
- micropython
- Purl
- pkg:deb/ubuntu/micropython@1.22.1+ds-1build2?arch=source&distro=noble
Ubuntu:Pro:24.04:LTS / micropython
Package
- Name
- micropython
- Purl
- pkg:deb/ubuntu/micropython@1.22.1+ds-1ubuntu0.24.04.1~esm1?arch=source&distro=esm-apps/noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.22.1+ds-1ubuntu0.24.04.1~esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "1.22.1+ds-1ubuntu0.24.04.1~esm1",
"binary_name": "micropython"
},
{
"binary_version": "1.22.1+ds-1ubuntu0.24.04.1~esm1",
"binary_name": "micropython-dbgsym"
},
{
"binary_version": "1.22.1+ds-1ubuntu0.24.04.1~esm1",
"binary_name": "micropython-doc"
}
]
}