Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2015-8816

Опубликовано: 23 фев. 2016
Источник: redhat
CVSS2: 4.9
EPSS Низкий

Описание

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device.

Отчет

This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 as the code with the flaw is not present in the products listed. This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7, and Red Hat Enterprise MRG 2. This has been rated as having Low security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelWill not fix
Red Hat Enterprise Linux 7kernelWill not fix
Red Hat Enterprise Linux 7kernel-rtWill not fix
Red Hat Enterprise MRG 2realtime-kernelWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=1311589kernel: USB hub invalid memory access in hub_activate()

EPSS

Процентиль: 24%
0.00076
Низкий

4.9 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2015-8816

CVSS3: 6.8
ubuntu
больше 9 лет назад

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device.

nvd логотип

CVE-2015-8816

CVSS3: 6.8
nvd
больше 9 лет назад

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device.

debian логотип

CVE-2015-8816

CVSS3: 6.8
debian
больше 9 лет назад

The hub_activate function in drivers/usb/core/hub.c in the Linux kerne ...

github логотип

GHSA-9h4c-rfpq-mrp2

CVSS3: 6.8
github
около 3 лет назад

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device.

suse-cvrf логотип

SUSE-SU-2016:2001-1

suse-cvrf
около 9 лет назад

Security update for Linux Kernel Live Patch 13 for SLE 12

EPSS

Процентиль: 24%
0.00076
Низкий

4.9 Medium

CVSS2