TROYANOSYVIRUS
Voltar para CVEs

CVE-2017-16911

N/A

Descricao

The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.

Detalhes CVE

Pontuacao CVSS v3.1N/A
Publicado1/31/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0

Produtos afetados

linux:linux_kernel

Fraquezas (CWE)

CWE-200

Referencias

http://www.securityfocus.com/bid/102156(PSIRT-CNA@flexerasoftware.com)
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.8(PSIRT-CNA@flexerasoftware.com)
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.114(PSIRT-CNA@flexerasoftware.com)
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/drivers/usb/usbip?id=2f2d0088eb93db5c649d2a5e34a3800a8a935fc5(PSIRT-CNA@flexerasoftware.com)
https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html(PSIRT-CNA@flexerasoftware.com)
https://secuniaresearch.flexerasoftware.com/advisories/80454/(PSIRT-CNA@flexerasoftware.com)
https://secuniaresearch.flexerasoftware.com/secunia_research/2017-20/(PSIRT-CNA@flexerasoftware.com)
https://usn.ubuntu.com/3619-1/(PSIRT-CNA@flexerasoftware.com)
https://usn.ubuntu.com/3619-2/(PSIRT-CNA@flexerasoftware.com)
https://usn.ubuntu.com/3754-1/(PSIRT-CNA@flexerasoftware.com)
https://www.debian.org/security/2018/dsa-4187(PSIRT-CNA@flexerasoftware.com)
https://www.spinics.net/lists/linux-usb/msg163480.html(PSIRT-CNA@flexerasoftware.com)
http://www.securityfocus.com/bid/102156(af854a3a-2127-422b-91ae-364da2661108)
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.8(af854a3a-2127-422b-91ae-364da2661108)
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.114(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/drivers/usb/usbip?id=2f2d0088eb93db5c649d2a5e34a3800a8a935fc5(af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html(af854a3a-2127-422b-91ae-364da2661108)
https://secuniaresearch.flexerasoftware.com/advisories/80454/(af854a3a-2127-422b-91ae-364da2661108)
https://secuniaresearch.flexerasoftware.com/secunia_research/2017-20/(af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3619-1/(af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3619-2/(af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3754-1/(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2018/dsa-4187(af854a3a-2127-422b-91ae-364da2661108)
https://www.spinics.net/lists/linux-usb/msg163480.html(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.