CVE-2013-2890

Linux Kernel < 3.11 - Denial of Service via HID Sony Driver Heap-Based Out-of-Bounds Write

Title source: llm
STIX 2.1

Description

drivers/hid/hid-sony.c in the Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_HID_SONY is enabled, allows physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device.

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_mlist
http://marc.info/?l=linux-input&m=137772182814616&w=1
Mailing List mailing-list x_refsource_mlist
http://openwall.com/lists/oss-security/2013/08/28/13

Scores

EPSS 0.0034
EPSS Percentile 25.6%

Details

CWE
CWE-119
Status published
Products (44)
linux/linux_kernel 3.0 rc1 (7 CPE variants)
linux/linux_kernel 3.0.1
linux/linux_kernel 3.0.2
linux/linux_kernel 3.0.3
linux/linux_kernel 3.0.4
linux/linux_kernel 3.0.5
linux/linux_kernel 3.0.6
linux/linux_kernel 3.0.7
linux/linux_kernel 3.0.8
linux/linux_kernel 3.0.9
... and 34 more
Published Sep 16, 2013
Tracked Since Feb 18, 2026