Published: 07/11/2017 Updated: 24/08/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.6 | Impact Score: 5.9 | Exploitability Score: 0.7

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c in the Linux kernel up to and including 4.13.11 allows local users to cause a denial of service (improper error handling and system crash) or possibly have unspecified other impact via a crafted USB device.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Several security issues were fixed in the Linux kernel ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2017-8824 Mohamed Ghannam discovered that the DCCP implementation did not correctly manage resources when a socket is disconnected and reconnected, potentially leading to a use-after-free ...

The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-corec in the Linux kernel through 41311 allows local users to cause a denial of service (improper error handling and system crash) or possibly have unspecified other impact via a crafted USB device ...

CWE-388 https://patchwork.kernel.org/patch/9966135/https://groups.google.com/d/msg/syzkaller/ngC5SLvxPm4/gduhCARhAwAJ http://www.securityfocus.com/bid/101842 https://www.debian.org/security/2017/dsa-4073 https://usn.ubuntu.com/3754-1/https://usn.ubuntu.com/3754-1/https://nvd.nist.gov

CVE-2017-16644

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect