AVG-483

Package linux
Status Fixed
Severity High
Type multiple issues
Affected 4.13.11-1
Fixed 4.14-1
Current 4.15.5-1 [core]
Ticket None
Created Thu Nov 9 19:07:46 2017
Issue Severity Remote Type Description
CVE-2017-16538 Medium No Denial of service
drivers/media/usb/dvb-usb-v2/lmedm04.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (general protection fault and...
CVE-2017-16537 Medium No Denial of service
The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer...
CVE-2017-16536 Medium No Denial of service
The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx- cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of...
CVE-2017-16535 Medium No Denial of service
The usb_get_bos_descriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service...
CVE-2017-16534 Medium No Denial of service
The cdc_parse_cdc_header function in drivers/usb/core/message.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service...
CVE-2017-16533 Medium No Denial of service
The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds...
CVE-2017-16532 Medium No Denial of service
The get_endpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer...
CVE-2017-16531 Medium No Denial of service
drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or...
CVE-2017-16530 Medium No Denial of service
The uas driver in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have...
CVE-2017-16529 Medium No Denial of service
The snd_usb_create_streams function in sound/usb/card.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds...
CVE-2017-16528 High No Privilege escalation
sound/core/seq_device.c in the Linux kernel before 4.13.4 allows local users to cause a denial of service (snd_rawmidi_dev_seq_free use- after-free and...
CVE-2017-16527 High No Privilege escalation
sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (snd_usb_mixer_interrupt use-after-free and system...
CVE-2017-16526 Medium No Denial of service
drivers/uwb/uwbd.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (general protection fault and system crash) or possibly...
CVE-2017-16525 High No Privilege escalation
The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service...
CVE-2017-15115 High No Privilege escalation
It was found that in Linux kernel before 4.14 when peeling off an association to the socket in another network namespace, all transports in this association...
References
https://github.com/google/syzkaller/blob/master/docs/linux/found_bugs_usb.md