Veracode Vulnerability DatabaseVERACODE:19176Denial Of Service (DoS)
6.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
Linux kernel is vulnerable to denial of service. This is because the usb_destroy_configuration() function, in config.c in the USB core subsystem does not consider the maximum number of configurations and interfaces before attempting to release resources which allows local users to cause a denial of service due to out-of-bounds write access.
References
lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.html
lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.html
openwall.com/lists/oss-security/2017/12/12/7
openwall.com/lists/oss-security/2017/12/12/7
access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html
access.redhat.com/errata/RHSA-2018:0676
access.redhat.com/errata/RHSA-2018:1062
access.redhat.com/errata/RHSA-2018:1062
access.redhat.com/errata/RHSA-2019:1170
access.redhat.com/errata/RHSA-2019:1170
access.redhat.com/errata/RHSA-2019:1190
access.redhat.com/errata/RHSA-2019:1190
access.redhat.com/security/cve/CVE-2017-13305
access.redhat.com/security/cve/CVE-2017-15274
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1292927
bugzilla.redhat.com/show_bug.cgi?id=1401061
bugzilla.redhat.com/show_bug.cgi?id=1430418
bugzilla.redhat.com/show_bug.cgi?id=1448770
bugzilla.redhat.com/show_bug.cgi?id=1452589
bugzilla.redhat.com/show_bug.cgi?id=1462329
bugzilla.redhat.com/show_bug.cgi?id=1500894
bugzilla.redhat.com/show_bug.cgi?id=1503749
bugzilla.redhat.com/show_bug.cgi?id=1506255
bugzilla.redhat.com/show_bug.cgi?id=1507270
bugzilla.redhat.com/show_bug.cgi?id=1509264
bugzilla.redhat.com/show_bug.cgi?id=1518274
bugzilla.redhat.com/show_bug.cgi?id=1518638
lists.debian.org/debian-lts-announce/2018/01/msg00004.html
lists.debian.org/debian-lts-announce/2018/01/msg00004.html
usn.ubuntu.com/3619-1/
usn.ubuntu.com/3619-1/
usn.ubuntu.com/3619-2/
usn.ubuntu.com/3619-2/
usn.ubuntu.com/3754-1/
usn.ubuntu.com/3754-1/
www.debian.org/security/2017/dsa-4073
www.debian.org/security/2017/dsa-4073
www.debian.org/security/2018/dsa-4082
www.debian.org/security/2018/dsa-4082
www.spinics.net/lists/linux-usb/msg163644.html
www.spinics.net/lists/linux-usb/msg163644.html
Related
6.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C