Integer underflow vulnerability in cp_report_fixup function in Linux kernel allows for denial of service or other unspecified impact via a crafted HID report

Integer underflow vulnerability in cp_report_fixup function in Linux kernel allows for denial of service or other unspecified impact via a crafted HID report

CVE-2017-7273 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or possibly have unspecified other impact via a crafted HID report.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.