CVE-2024-27059 : In the Linux kernel, the following vulnerability has been resolved: USB: usb-st

In the Linux kernel, the following vulnerability has been resolved: USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command The isd200 sub-driver in usb-storage uses the HEADS and SECTORS values in the ATA ID information to calculate cylinder and head values when creating a CDB for READ or WRITE commands. The calculation involves division and modulus operations, which will cause a crash if either of these values is 0. While this never happens with a genuine device, it could happen with a flawed or subversive emulation, as reported by the syzbot fuzzer. Protect against this possibility by refusing to bind to the device if either the ATA_ID_HEADS or ATA_ID_SECTORS value in the device's ID information is 0. This requires isd200_Initialization() to return a negative error code when initialization fails; currently it always returns 0 (even when there is an error).

Published 2024-05-01 13:15:50

Updated 2025-01-14 14:36:43

Source Linux

View at NVD, CVE.org

Products affected by CVE-2024-27059

Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 2.6.12 and before (<) 4.19.312
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.11 and before (<) 5.15.154
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.7 and before (<) 6.7.12
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.16 and before (<) 6.1.84
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.5 and before (<) 5.10.215
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.6.64
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 4.20 and before (<) 5.4.274
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC1
cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC2
cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC3
cpe:2.3:o:linux:linux_kernel:6.8:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC4
cpe:2.3:o:linux:linux_kernel:6.8:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC5
cpe:2.3:o:linux:linux_kernel:6.8:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC6
cpe:2.3:o:linux:linux_kernel:6.8:rc6:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-27059

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 14 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-27059

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2025-01-14
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	N/A	N/A	RedHat-CVE-2024-27059	2024-05-01
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2024-27059

CWE-369 Divide By Zero

The product divides a value by zero.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2024-27059

https://git.kernel.org/stable/c/871fd7b10b56d280990b7e754f43d888382ca325

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/6c1f36d92c0a8799569055012665d2bb066fb964

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/284fb1003d5da111019b9e0bf99b084fd71ac133

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

[SECURITY] [DLA 3840-1] linux security update
Mailing List

CVEs referencing this url
https://git.kernel.org/stable/c/f42ba916689f5c7b1642092266d2f53cf527aaaa

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/014bcf41d946b36a8f0b8e9b5d9529efbb822f49

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/eb7b01ca778170654e1c76950024270ba74b121f

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

[SECURITY] [DLA 3842-1] linux-5.10 security update
Mailing List

CVEs referencing this url
https://git.kernel.org/stable/c/9968c701cba7eda42e5f0052b040349d6222ae34

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/3a67d4ab9e730361d183086dfb0ddd8c61f01636

USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2024-27059

Products affected by CVE-2024-27059

Exploit prediction scoring system (EPSS) score for CVE-2024-27059

CVSS scores for CVE-2024-27059

CWE ids for CVE-2024-27059

References for CVE-2024-27059