Description
Mismatches in interpreting USB authorization policy between GNOME Settings Daemon (GSD) through 46.0 and the Linux kernel's underlying device matching logic allow a physically proximate attacker to access some unintended Linux kernel USB functionality, such as USB device-specific kernel modules and filesystem implementations. NOTE: the GSD supplier indicates that consideration of a mitigation for this within GSD would be in the context of "a new feature, not a CVE."
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 13 | | =48.1-1 || =48.1-2 || =49.0-1 || =49.1-1 || =49.1-2 || =49.1-3 || =49.1-4 || =49.1-5 || =50.0-1 || =50.0-2 || =50.1-1 |
debian 11 | | =3.38.2-1 || =40.0.1-1 || =40.0.1-2 || =41.0-1 || =41.0-2 || =41.0-3 || =41.0-4 || =42.1-1 || =42.1-2 || =42.1-3 || =42.2-1 || =42~alpha-1 || =42~rc-1 || =43.0-1 || =43.0-2 || =43.0-3 || =43.0-4 || =43~beta-1 || =43~rc-1 || =44.0-1 || =44.1-1 || =44.1-2 || =44~beta-1 || =44~rc-1 || =45.0-1 || =45.0-2 || =45.1-1 || =45~beta-1 || =45~rc-1 || =46.0-1 || =46.0-2 || =46.0-3 || =46.0-4 || =46.0-5 || =46~beta-1 || =46~beta-2 || =47.1-1 || =47.1-2 || =47.2-1 || =47~beta-1 || =47~rc-1 || =48.0-1 || =48.1-1 || =48.1-2 || =48~beta-1 || =48~rc-1 || =49.0-1 || =49.1-1 || =49.1-2 || =49.1-3 || =49.1-4 || =49.1-5 || =50.0-1 || =50.0-2 || =50.1-1 |
debian 12 | | =43.0-4 || =44.0-1 || =44.1-1 || =44.1-2 || =44~beta-1 || =44~rc-1 || =45.0-1 || =45.0-2 || =45.1-1 || =45~beta-1 || =45~rc-1 || =46.0-1 || =46.0-2 || =46.0-3 || =46.0-4 || =46.0-5 || =46~beta-1 || =46~beta-2 || =47.1-1 || =47.1-2 || =47.2-1 || =47~beta-1 || =47~rc-1 || =48.0-1 || =48.1-1 || =48.1-2 || =48~beta-1 || =48~rc-1 || =49.0-1 || =49.1-1 || =49.1-2 || =49.1-3 || =49.1-4 || =49.1-5 || =50.0-1 || =50.0-2 || =50.1-1 |
debian 14 | | =48.1-1 || =48.1-2 || =49.0-1 || =49.1-1 || =49.1-2 || =49.1-3 || =49.1-4 || =49.1-5 || =50.0-1 || =50.0-2 || =50.1-1 |
 rpm rhel10 | | - |
rpm rhel9 | | - |
