CVE-2015-7566

Published: Feb 8, 2016Modified: May 6, 2026

4.6

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a bulk-out endpoint.

Affected (7)

Products: Novell: Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit · Linux: Linux Kernel

Novell

4 products

Suse Linux Enterprise Debuginfo

Suse Linux Enterprise Real Time Extension

Suse Linux Enterprise Server

Suse Linux Enterprise Software Development Kit

Linux

1 product

Linux Kernel

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Debuginfo	Version 11 sp4
Novell Suse Linux Enterprise Real Time Extension	Version 11 sp4
Novell Suse Linux Enterprise Real Time Extension	Version 12 sp1
Novell Suse Linux Enterprise Server	Version 11 extra
Novell Suse Linux Enterprise Server	Version 11 sp4
Novell Suse Linux Enterprise Software Development Kit	Version 11 sp4

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Up to 4.4.1

References (54)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cb3232138e37129e88240a98a1d2aba2187ff57c

Source: secalert@redhat.com

Vendor Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175792.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176194.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html

Source: secalert@redhat.com

http://www.debian.org/security/2016/dsa-3448

Source: secalert@redhat.com

http://www.debian.org/security/2016/dsa-3503

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/537733/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/82975

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2929-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2929-2

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2930-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2930-2

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2930-3

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2932-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2948-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2948-2

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2967-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2967-2

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1283371

Source: secalert@redhat.com

Issue TrackingVDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=1296466

Source: secalert@redhat.com

Issue TrackingVDB Entry

https://github.com/torvalds/linux/commit/cb3232138e37129e88240a98a1d2aba2187ff57c

Source: secalert@redhat.com

https://security-tracker.debian.org/tracker/CVE-2015-7566

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/39540/

Source: secalert@redhat.com

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cb3232138e37129e88240a98a1d2aba2187ff57c