Lucene search

K
ubuntucveUbuntu.comUB:CVE-2017-17975
HistoryDec 29, 2017 - 12:00 a.m.

CVE-2017-17975

2017-12-2900:00:00
ubuntu.com
ubuntu.com
22

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

26.7%

Use-after-free in the usbtv_probe function in
drivers/media/usb/usbtv/usbtv-core.c in the Linux kernel through 4.14.10
allows attackers to cause a denial of service (system crash) or possibly
have unspecified other impact by triggering failure of audio registration,
because a kfree of the usbtv data structure occurs during a
usbtv_video_free call, but the usbtv_video_fail label’s code attempts to
both access and free this data structure.

OSVersionArchitecturePackageVersionFilename
ubuntu17.10noarchlinux< 4.13.0-43.48UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-127.153UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1022.22UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1060.69UNKNOWN
ubuntu16.04noarchlinux-azure< 4.13.0-1018.21UNKNOWN
ubuntu16.04noarchlinux-gcp< 4.13.0-1017.21UNKNOWN
ubuntu16.04noarchlinux-hwe< 4.13.0-43.48~16.04.1UNKNOWN
ubuntu18.04noarchlinux-hwe-edge< 4.18.0-8.9~18.04.1UNKNOWN
ubuntu16.04noarchlinux-hwe-edge< 4.13.0-43.48~16.04.1UNKNOWN
ubuntu16.04noarchlinux-kvm< 4.4.0-1026.31UNKNOWN
Rows per page:
1-10 of 161

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

26.7%