Published: 06/02/2017 Updated: 24/08/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 188

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

The klsi_105_get_line_state function in drivers/usb/serial/kl5kusb105.c in the Linux kernel prior to 4.9.5 places uninitialized heap-memory contents into a log entry upon a failure to read the line status, which allows local users to obtain sensitive information by reading the log.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or have other impacts CVE-2016-6786 / CVE-2016-6787 It was discovered that the performance events subsystem does not properly manage locks during certain migrations, allowing a local attacker to escalate privileg ...

Several security issues were fixed in the Linux kernel ...

Several security issues were fixed in the kernel ...

Several security issues were fixed in the Linux kernel ...

Several security issues were fixed in the kernel ...

CWE-532 https://github.com/torvalds/linux/commit/146cc8a17a3b4996f6805ee5c080e7101277c410 https://bugzilla.redhat.com/show_bug.cgi?id=1416114 http://www.openwall.com/lists/oss-security/2017/01/21/3 http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.5 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=146cc8a17a3b4996f6805ee5c080e7101277c410 http://www.securityfocus.com/bid/95715 http://www.debian.org/security/2017/dsa-3791 https://usn.ubuntu.com/3754-1/https://nvd.nist.gov https://www.debian.org/security/./dsa-3791 https://usn.ubuntu.com/3754-1/

CVE-2017-5549

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect