2 matches found
SUSE CVE-2017-8924
The edgebulkincallback function in drivers/usb/serial/ioti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information in the dmesg ringbuffer and syslog from uninitialized kernel memory by using a crafted USB device posing as an ioti USB serial device to trigger an...
PT-2017-1617 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.10.4 Description: The issue is related to the sg ioctl function in the Linux kernel, which allows local users to cause a denial of service or possibly have other impacts via a large command size in an SG NEXT C...