CVE-2016-2782

Published: Apr 27, 2016Modified: May 6, 2026

4.6

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a (1) bulk-in or (2) interrupt-in endpoint.

Affected (18)

Products: Linux: Linux Kernel · Suse: Linux Enterprise Debuginfo, Linux Enterprise Desktop, Linux Enterprise Module For Public Cloud, Linux Enterprise Real Time Extension, Linux Enterprise Server, Linux Enterprise Software Development Kit, Linux Enterprise Workstation Extension

Linux

1 product

Linux Kernel

Suse

7 products

Linux Enterprise Debuginfo

Linux Enterprise Desktop

Linux Enterprise Module For Public Cloud

Linux Enterprise Real Time Extension

Linux Enterprise Server

Linux Enterprise Software Development Kit

Linux Enterprise Workstation Extension

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 4.5.0
Linux Linux Kernel	Version 4.5.0 rc1

Configuration B

16 vulnerable

Vulnerable Software	Affected Versions
Suse Linux Enterprise Debuginfo	Version 11 sp2
Suse Linux Enterprise Debuginfo	Version 11 sp4
Suse Linux Enterprise Desktop	Version 12
Suse Linux Enterprise Desktop	Version 12 sp1
Suse Linux Enterprise Module For Public Cloud	Version 12
Suse Linux Enterprise Real Time Extension	Version 11 sp4
Suse Linux Enterprise Real Time Extension	Version 12 sp1
Suse Linux Enterprise Server	Version 11 sp2
Suse Linux Enterprise Server	Version 11 sp4
Suse Linux Enterprise Server	Version 12
Suse Linux Enterprise Server	Version 12 sp1
Suse Linux Enterprise Software Development Kit	Version 11 sp4
Suse Linux Enterprise Software Development Kit	Version 12
Suse Linux Enterprise Software Development Kit	Version 12 sp1
Suse Linux Enterprise Workstation Extension	Version 12
Suse Linux Enterprise Workstation Extension	Version 12 sp1

Related CWEs

CWE-476

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (42)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cac9b50b0d75a1d50d6c056ff65c005f3224c8e0

Source: secalert@redhat.com

Issue TrackingPatchVendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2016/02/28/9

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://www.ubuntu.com/usn/USN-2929-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2929-2

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2930-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2930-2

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2930-3

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2932-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2948-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2948-2

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2967-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2967-2

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1312670

Source: secalert@redhat.com

ExploitIssue TrackingThird Party Advisory

https://github.com/torvalds/linux/commit/cac9b50b0d75a1d50d6c056ff65c005f3224c8e0

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

https://www.exploit-db.com/exploits/39539/

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cac9b50b0d75a1d50d6c056ff65c005f3224c8e0