The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a (1) bulk-in or (2) interrupt-in endpoint.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 02:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cac9b50b0d75a1d50d6c056ff65c005f3224c8e0 - Issue Tracking, Patch, Vendor Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html - Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html - Mailing List, Third Party Advisory | |
References | () http://www.openwall.com/lists/oss-security/2016/02/28/9 - Mailing List, Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2929-1 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2929-2 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2930-1 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2930-2 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2930-3 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2932-1 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2948-1 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2948-2 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2967-1 - Third Party Advisory | |
References | () http://www.ubuntu.com/usn/USN-2967-2 - Third Party Advisory | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=1312670 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://github.com/torvalds/linux/commit/cac9b50b0d75a1d50d6c056ff65c005f3224c8e0 - Issue Tracking, Patch, Third Party Advisory | |
References | () https://www.exploit-db.com/exploits/39539/ - Third Party Advisory, VDB Entry |
Information
Published : 2016-04-27 17:59
Updated : 2024-11-21 02:48
NVD link : CVE-2016-2782
Mitre link : CVE-2016-2782
CVE.ORG link : CVE-2016-2782
JSON object : View
Products Affected
suse
- linux_enterprise_workstation_extension
- linux_enterprise_software_development_kit
- linux_enterprise_server
- linux_enterprise_desktop
- linux_enterprise_real_time_extension
- linux_enterprise_debuginfo
- linux_enterprise_module_for_public_cloud
linux
- linux_kernel
CWE
CWE-476
NULL Pointer Dereference