CVE-2016-3951

Published: May 2, 2016Modified: May 6, 2026

4.6

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invalid USB descriptor.

Affected (15)

Products: Canonical: Ubuntu Linux · Novell: Suse Linux Enterprise Desktop, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Module For Public Cloud, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Workstation Extension · Suse: Suse Linux Enterprise Software Development Kit · +1 more

Show all products

Canonical: Ubuntu Linux · Novell: Suse Linux Enterprise Desktop, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Module For Public Cloud, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Workstation Extension · Suse: Suse Linux Enterprise Software Development Kit · Linux: Linux Kernel

Canonical

1 product

Ubuntu Linux

Novell

7 products

Suse Linux Enterprise Desktop

Suse Linux Enterprise Live Patching

Suse Linux Enterprise Module For Public Cloud

Suse Linux Enterprise Real Time Extension

Suse Linux Enterprise Server

Suse Linux Enterprise Software Development Kit

Suse Linux Enterprise Workstation Extension

Suse

1 product

Suse Linux Enterprise Software Development Kit

Linux

1 product

Linux Kernel

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 15.10

Configuration B

11 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Desktop	Version 12
Novell Suse Linux Enterprise Desktop	Version 12 sp1
Novell Suse Linux Enterprise Live Patching	Version 12.0
Novell Suse Linux Enterprise Module For Public Cloud	Version 12
Novell Suse Linux Enterprise Real Time Extension	Version 12 sp1
Novell Suse Linux Enterprise Server	Version 12.0
Novell Suse Linux Enterprise Server	Version 12.0 sp1
Novell Suse Linux Enterprise Software Development Kit	Version 12.0 sp1
Novell Suse Linux Enterprise Workstation Extension	Version 12.0
Novell Suse Linux Enterprise Workstation Extension	Version 12.0 sp1
Suse Suse Linux Enterprise Software Development Kit	Version 12.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Version 4.5.0 rc7

References (46)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1666984c8625b3db19a9abc298931d35ab7bc64b

Source: cve@mitre.org

Vendor Advisory

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4d06dd537f95683aba3651098ae288b7cbff8274

Source: cve@mitre.org

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00060.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

Source: cve@mitre.org

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html

Source: cve@mitre.org

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: cve@mitre.org

Third Party Advisory

http://www.debian.org/security/2016/dsa-3607

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2016/04/06/4

Source: cve@mitre.org

http://www.securityfocus.com/bid/91028

Source: cve@mitre.org

http://www.securitytracker.com/id/1036763

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-2989-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-2998-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3000-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3001-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3002-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3003-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3004-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3021-1

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-3021-2

Source: cve@mitre.org

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1324782

Source: cve@mitre.org

Issue Tracking

https://github.com/torvalds/linux/commit/1666984c8625b3db19a9abc298931d35ab7bc64b

Source: cve@mitre.org

Vendor Advisory

https://github.com/torvalds/linux/commit/4d06dd537f95683aba3651098ae288b7cbff8274

Source: cve@mitre.org

Vendor Advisory

https://www.spinics.net/lists/netdev/msg367669.html

Source: cve@mitre.org

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1666984c8625b3db19a9abc298931d35ab7bc64b