kernel: Unallocated memory access by malicious USB device via bNumInterfaces overflow
The usbdestroyconfiguration function, in 'drivers/usb/core/config.c' in the USB core subsystem, in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces before attempting to release resources. This allows local users to cause a denial of service, du...