CVE-2016-3689

Published: May 2, 2016Modified: May 6, 2026

4.6

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface.

Affected (13)

Products: Novell: Suse Linux Enterprise Desktop, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Module For Public Cloud, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Workstation Extension · Linux: Linux Kernel · Canonical: Ubuntu Linux

7 products

Suse Linux Enterprise Desktop

Suse Linux Enterprise Live Patching

Suse Linux Enterprise Module For Public Cloud

Suse Linux Enterprise Real Time Extension

Suse Linux Enterprise Server

Suse Linux Enterprise Software Development Kit

Suse Linux Enterprise Workstation Extension

1 product

1 product

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Desktop	Version 12.0
Novell Suse Linux Enterprise Desktop	Version 12.0 sp1
Novell Suse Linux Enterprise Live Patching	Version 12.0
Novell Suse Linux Enterprise Module For Public Cloud	Version 12.0
Novell Suse Linux Enterprise Real Time Extension	Version 12.0 sp1
Novell Suse Linux Enterprise Server	Version 12.0
Novell Suse Linux Enterprise Server	Version 12.0 sp1
Novell Suse Linux Enterprise Software Development Kit	Version 12.0
Novell Suse Linux Enterprise Software Development Kit	Version 12.0 sp1
Novell Suse Linux Enterprise Workstation Extension	Version 12.0
Novell Suse Linux Enterprise Workstation Extension	Version 12.0 sp1

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Up to 4.5.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04

References (36)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a0ad220c96692eda76b2e3fd7279f3dcd1d8a8ff

Source: secalert@redhat.com

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00060.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: secalert@redhat.com

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.1

Source: secalert@redhat.com

Vendor Advisory

http://www.openwall.com/lists/oss-security/2016/03/30/6

Source: secalert@redhat.com

http://www.securitytracker.com/id/1035441

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2968-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2968-2

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2970-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2971-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2971-2

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2971-3

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-3000-1

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.novell.com/show_bug.cgi?id=971628

Source: secalert@redhat.com

Issue Tracking

https://bugzilla.redhat.com/show_bug.cgi?id=1320060

Source: secalert@redhat.com

Issue Tracking

https://github.com/torvalds/linux/commit/a0ad220c96692eda76b2e3fd7279f3dcd1d8a8ff

Source: secalert@redhat.com

Vendor Advisory

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a0ad220c96692eda76b2e3fd7279f3dcd1d8a8ff

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00060.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.openwall.com/lists/oss-security/2016/03/30/6

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1035441

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2968-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2968-2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2970-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2971-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2971-2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2971-3

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-3000-1

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.novell.com/show_bug.cgi?id=971628

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://bugzilla.redhat.com/show_bug.cgi?id=1320060

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://github.com/torvalds/linux/commit/a0ad220c96692eda76b2e3fd7279f3dcd1d8a8ff

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.