Lucene search

K
ubuntucveUbuntu.comUB:CVE-2016-3951
HistoryMay 02, 2016 - 12:00 a.m.

CVE-2016-3951

2016-05-0200:00:00
ubuntu.com
ubuntu.com
20

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

73.3%

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel
before 4.5 allows physically proximate attackers to cause a denial of
service (system crash) or possibly have unspecified other impact by
inserting a USB device with an invalid USB descriptor.

Bugs

Notes

Author Note
jdstrand android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.10 and earlier preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support
sbeattie requires physical proximity
OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-105.146UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-87.133UNKNOWN
ubuntu15.10noarchlinux< 4.2.0-38.45UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-22.39UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1668.93UNKNOWN
ubuntu12.04noarchlinux-lts-trusty< 3.13.0-88.135~precise1UNKNOWN
ubuntu14.04noarchlinux-lts-utopic< 3.16.0-73.95~14.04.1UNKNOWN
ubuntu14.04noarchlinux-lts-vivid< 3.19.0-61.69~14.04.1UNKNOWN
ubuntu14.04noarchlinux-lts-wily< 4.2.0-38.45~14.04.1UNKNOWN
ubuntu14.04noarchlinux-lts-xenial< 4.4.0-22.39~14.04.1UNKNOWN
Rows per page:
1-10 of 141

References

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

73.3%