CVE-2017-16525

Published: Nov 4, 2017Modified: May 13, 2026

6.6

Vector

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.7 / Impact: 5.9

Source: NVD

Description

The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device, related to disconnection and failed setup.

Affected (11)

Products: Linux: Linux Kernel · Debian: Debian Linux · Canonical: Ubuntu Linux

1 product

1 product

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 2.6.18 to 3.2.96
Linux Linux Kernel	From 3.11 to 3.16.51
Linux Linux Kernel	From 3.17 to 3.18.76
Linux Linux Kernel	From 3.19 to 4.1.46
Linux Linux Kernel	From 3.3 to 3.10.108
Linux Linux Kernel	From 4.10 to 4.13.8
Linux Linux Kernel	From 4.2 to 4.4.93
Linux Linux Kernel	From 4.5 to 4.9.57

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (14)

http://www.securityfocus.com/bid/102028

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://github.com/torvalds/linux/commit/299d7572e46f98534033a9e65973f13ad1ce9047

Source: cve@mitre.org

PatchThird Party Advisory

https://github.com/torvalds/linux/commit/bd998c2e0df0469707503023d50d46cf0b10c787

Source: cve@mitre.org

PatchThird Party Advisory

https://groups.google.com/d/msg/syzkaller/cMACrmo1x0k/4KhRoUgABAAJ

Source: cve@mitre.org

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3583-1/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3583-2/

Source: cve@mitre.org

Third Party Advisory

http://www.securityfocus.com/bid/102028

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://github.com/torvalds/linux/commit/299d7572e46f98534033a9e65973f13ad1ce9047

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://github.com/torvalds/linux/commit/bd998c2e0df0469707503023d50d46cf0b10c787

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://groups.google.com/d/msg/syzkaller/cMACrmo1x0k/4KhRoUgABAAJ

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3583-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3583-2/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.