Published: 19/10/2015 Updated: 13/09/2017

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 436

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 up to and including 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate malicious users to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor.

Vulnerable Product	Search on Vulmon	Subscribe to Product
novell suse linux enterprise real time extension 12
redhat enterprise linux 7.1

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, information leak or data loss CVE-2013-7446 Dmitry Vyukov discovered that a particular sequence of valid operations on local (AF_UNIX) sockets can result in a use-after-free This may be used to cause a denial o ...

An out-of-bounds memory access flaw was found in the USBVision USB camera driver (usbvision_probe() function in drivers/media/usb/usbvision/usbvision-videoc) The driver assumes that the interfaces numbers of the USB device are always in 0,1,2,3 order By using a specially crafted USB device which advertises an out-of-order number on one of its ...

Several security issues were fixed in the kernel ...

USN 2948-1 introduced a regression in the Ubuntu 1410 Linux kernel backported to Ubuntu 1404 LTS ...

Several security issues were fixed in the kernel ...

CWE-17 http://www.securityfocus.com/archive/1/536629 http://www.os-s.net/advisories/DOS-KernelCrashesOnInvalidUSBDeviceDescriptors-UsbvisionDriver.pdf https://bugzilla.redhat.com/show_bug.cgi?id=1201858 http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html http://www.ubuntu.com/usn/USN-2967-1 http://www.ubuntu.com/usn/USN-2967-2 http://www.ubuntu.com/usn/USN-2929-1 http://www.ubuntu.com/usn/USN-2947-2 http://www.ubuntu.com/usn/USN-2932-1 http://www.ubuntu.com/usn/USN-2947-3 http://www.ubuntu.com/usn/USN-2948-2 http://www.ubuntu.com/usn/USN-2929-2 http://www.ubuntu.com/usn/USN-2947-1 http://www.ubuntu.com/usn/USN-2948-1 http://www.securityfocus.com/bid/77030 http://www.debian.org/security/2015/dsa-3396 http://www.debian.org/security/2015/dsa-3426 http://www.securitytracker.com/id/1034452 https://nvd.nist.gov https://www.debian.org/security/./dsa-3426 https://access.redhat.com/security/cve/cve-2015-7833 https://usn.ubuntu.com/2967-1/

CVE-2015-7833

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect