The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel prior to 4.5.1 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference or double free, and system crash) via a crafted endpoints value in a USB device descriptor.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
linux linux kernel |
||
canonical ubuntu linux 12.04 |
||
novell suse linux enterprise module for public cloud 12.0 |
||
novell suse linux enterprise server 11.0 |
||
novell suse linux enterprise server 12.0 |
||
novell suse linux enterprise live patching 12.0 |
||
novell suse linux enterprise real time extension 11.0 |
||
novell suse linux enterprise real time extension 12.0 |
||
novell suse linux enterprise desktop 12.0 |
||
novell suse linux enterprise workstation extension 12.0 |
||
novell suse linux enterprise debuginfo 11.0 |
||
novell suse linux enterprise software development kit 11.0 |
||
novell suse linux enterprise software development kit 12.0 |
Vulmon