CVE-2023-54299
- Source
- https://cve.org/CVERecord?id=CVE-2023-54299
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54299.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-54299
- Downstream
- Related
- Published
- 2025-12-30T12:23:35.146Z
- Modified
- 2026-03-28T17:44:27.004699149Z
- Summary
- usb: typec: bus: verify partner exists in typec_altmode_attention
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usb: typec: bus: verify partner exists in typecaltmodeattention
Some usb hubs will negotiate DisplayPort Alt mode with the device but will then negotiate a data role swap after entering the alt mode. The data role swap causes the device to unregister all alt modes, however the usb hub will still send Attention messages even after failing to reregister the Alt Mode. typealtmodeattention currently does not verify whether or not a device's altmode partner exists, which results in a NULL pointer error when dereferencing the typecaltmode and typecaltmode_ops belonging to the altmode partner.
Verify the presence of a device's altmode partner before sending the Attention message to the Alt Mode driver.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54299.json" }- References
-
- https://git.kernel.org/stable/c/0ad6bad31da692f8d7acacab07eabe7586239ae0
- https://git.kernel.org/stable/c/0d3b5fe47938e9c451466845304a2bd74e967a80
- https://git.kernel.org/stable/c/1101867a1711c27d8bbe0e83136bec47f8c1ca2a
- https://git.kernel.org/stable/c/38e1f2ee82bacbbfded8f1c06794a443d038d054
- https://git.kernel.org/stable/c/5f71716772b88cbe0e1788f6a38d7871aff2120b
- https://git.kernel.org/stable/c/d49547950bf7f3480d6ca05fe055978e5f0d9e5b
- https://git.kernel.org/stable/c/f23643306430f86e2f413ee2b986e0773e79da31
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54299.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-54299
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8a37d87d72f0c69f837229c04d2fcd7117ea57e7Fixed5f71716772b88cbe0e1788f6a38d7871aff2120bFixed38e1f2ee82bacbbfded8f1c06794a443d038d054Fixed0ad6bad31da692f8d7acacab07eabe7586239ae0Fixed0d3b5fe47938e9c451466845304a2bd74e967a80Fixedd49547950bf7f3480d6ca05fe055978e5f0d9e5bFixed1101867a1711c27d8bbe0e83136bec47f8c1ca2aFixedf23643306430f86e2f413ee2b986e0773e79da31
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.19.0Fixed5.4.257
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.195
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.132
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.53
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.4.16
- Type
- ECOSYSTEM
- Events
-
Introduced6.5.0Fixed6.5.3