Candidate: CVE-2016-3139
PublicDate: 2016-04-27 17:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3139
 http://www.openwall.com/lists/oss-security/2016/03/14/5
 http://seclists.org/bugtraq/2016/Mar/60
 http://www.spinics.net/lists/linux-input/msg42294.html
 https://bugzilla.redhat.com/show_bug.cgi?id=1283375
 https://bugzilla.redhat.com/attachment.cgi?id=1099056 (patch)
Description:
 The wacom_probe function in drivers/input/tablet/wacom_sys.c in the Linux
 kernel before 3.17 allows physically proximate attackers to cause a denial
 of service (NULL pointer dereference and system crash) via a crafted
 endpoints value in a USB device descriptor.
Ubuntu-Description:
Notes:
 jdstrand> android kernels (flo, goldfish, grouper, maguro, mako and manta) are
  not supported on the Ubuntu Touch 14.10 and earlier preview kernels
 jdstrand> linux-lts-saucy no longer receives official support
 jdstrand> linux-lts-quantal no longer receives official support
 sbeattie> may be RHEL 7 only
Bugs:
 https://launchpad.net/bugs/1556883
Priority: low
Discovered-by: Sergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg
Assigned-to: 
CVSS:
 nvd: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [4.6 MEDIUM]

Patches_linux:
upstream_linux: not-affected (RHEL7 specific CVE)
precise_linux: not-affected (RHEL7 specific CVE)
trusty_linux: not-affected (RHEL7 specific CVE)
trusty/esm_linux: not-affected (RHEL7 specific CVE)
vivid/ubuntu-core_linux: not-affected (RHEL7 specific CVE)
vivid/stable-phone-overlay_linux: DNE
wily_linux: not-affected (RHEL7 specific CVE)
xenial_linux: not-affected (RHEL7 specific CVE)
esm-infra/xenial_linux: not-affected (RHEL7 specific CVE)
devel_linux: not-affected (RHEL7 specific CVE)

Patches_linux-ti-omap4:
upstream_linux-ti-omap4: not-affected (RHEL7 specific CVE)
precise_linux-ti-omap4: not-affected (RHEL7 specific CVE)
trusty_linux-ti-omap4: DNE
trusty/esm_linux-ti-omap4: DNE
vivid/ubuntu-core_linux-ti-omap4: DNE
vivid/stable-phone-overlay_linux-ti-omap4: DNE
wily_linux-ti-omap4: DNE
xenial_linux-ti-omap4: DNE
devel_linux-ti-omap4: DNE

Patches_linux-linaro-omap:
upstream_linux-linaro-omap: not-affected (RHEL7 specific CVE)
precise_linux-linaro-omap: ignored (abandoned)
trusty_linux-linaro-omap: DNE
trusty/esm_linux-linaro-omap: DNE
vivid/ubuntu-core_linux-linaro-omap: DNE
vivid/stable-phone-overlay_linux-linaro-omap: DNE
wily_linux-linaro-omap: DNE
xenial_linux-linaro-omap: DNE
devel_linux-linaro-omap: DNE

Patches_linux-linaro-shared:
upstream_linux-linaro-shared: not-affected (RHEL7 specific CVE)
precise_linux-linaro-shared: ignored (abandoned)
trusty_linux-linaro-shared: DNE
trusty/esm_linux-linaro-shared: DNE
vivid/ubuntu-core_linux-linaro-shared: DNE
vivid/stable-phone-overlay_linux-linaro-shared: DNE
wily_linux-linaro-shared: DNE
xenial_linux-linaro-shared: DNE
devel_linux-linaro-shared: DNE

Patches_linux-linaro-vexpress:
upstream_linux-linaro-vexpress: not-affected (RHEL7 specific CVE)
precise_linux-linaro-vexpress: ignored (abandoned)
trusty_linux-linaro-vexpress: DNE
trusty/esm_linux-linaro-vexpress: DNE
vivid/ubuntu-core_linux-linaro-vexpress: DNE
vivid/stable-phone-overlay_linux-linaro-vexpress: DNE
wily_linux-linaro-vexpress: DNE
xenial_linux-linaro-vexpress: DNE
devel_linux-linaro-vexpress: DNE

Patches_linux-qcm-msm:
upstream_linux-qcm-msm: not-affected (RHEL7 specific CVE)
precise_linux-qcm-msm: ignored (abandoned)
trusty_linux-qcm-msm: DNE
trusty/esm_linux-qcm-msm: DNE
vivid/ubuntu-core_linux-qcm-msm: DNE
vivid/stable-phone-overlay_linux-qcm-msm: DNE
wily_linux-qcm-msm: DNE
xenial_linux-qcm-msm: DNE
devel_linux-qcm-msm: DNE

Tags_linux-armadaxp: not-ue
Patches_linux-armadaxp:
upstream_linux-armadaxp: not-affected (RHEL7 specific CVE)
precise_linux-armadaxp: not-affected (RHEL7 specific CVE)
trusty_linux-armadaxp: DNE
trusty/esm_linux-armadaxp: DNE
vivid/ubuntu-core_linux-armadaxp: DNE
vivid/stable-phone-overlay_linux-armadaxp: DNE
wily_linux-armadaxp: DNE
xenial_linux-armadaxp: DNE
devel_linux-armadaxp: DNE

Tags_linux-lts-quantal: not-ue
Patches_linux-lts-quantal:
upstream_linux-lts-quantal: not-affected (RHEL7 specific CVE)
precise_linux-lts-quantal: ignored (end-of-life)
trusty_linux-lts-quantal: DNE
trusty/esm_linux-lts-quantal: DNE
vivid/ubuntu-core_linux-lts-quantal: DNE
vivid/stable-phone-overlay_linux-lts-quantal: DNE
wily_linux-lts-quantal: DNE
xenial_linux-lts-quantal: DNE
devel_linux-lts-quantal: DNE

Patches_linux-lts-raring:
upstream_linux-lts-raring: not-affected (RHEL7 specific CVE)
precise_linux-lts-raring: ignored (end-of-life)
trusty_linux-lts-raring: DNE
trusty/esm_linux-lts-raring: DNE
vivid/ubuntu-core_linux-lts-raring: DNE
vivid/stable-phone-overlay_linux-lts-raring: DNE
wily_linux-lts-raring: DNE
xenial_linux-lts-raring: DNE
devel_linux-lts-raring: DNE

Tags_linux-lts-saucy: not-ue
Patches_linux-lts-saucy:
upstream_linux-lts-saucy: not-affected (RHEL7 specific CVE)
precise_linux-lts-saucy: ignored (end-of-life)
trusty_linux-lts-saucy: DNE
trusty/esm_linux-lts-saucy: DNE
vivid/ubuntu-core_linux-lts-saucy: DNE
vivid/stable-phone-overlay_linux-lts-saucy: DNE
wily_linux-lts-saucy: DNE
xenial_linux-lts-saucy: DNE
devel_linux-lts-saucy: DNE

Patches_linux-lts-trusty:
upstream_linux-lts-trusty: not-affected (RHEL7 specific CVE)
precise_linux-lts-trusty: not-affected (RHEL7 specific CVE)
trusty_linux-lts-trusty: DNE
trusty/esm_linux-lts-trusty: DNE
vivid/ubuntu-core_linux-lts-trusty: DNE
vivid/stable-phone-overlay_linux-lts-trusty: DNE
wily_linux-lts-trusty: DNE
xenial_linux-lts-trusty: DNE
devel_linux-lts-trusty: DNE

Patches_linux-goldfish:
upstream_linux-goldfish: not-affected (RHEL7 specific CVE)
precise_linux-goldfish: DNE
trusty_linux-goldfish: ignored
trusty/esm_linux-goldfish: DNE (trusty was ignored)
vivid/ubuntu-core_linux-goldfish: DNE
vivid/stable-phone-overlay_linux-goldfish: DNE
wily_linux-goldfish: not-affected (RHEL7 specific CVE)
xenial_linux-goldfish: not-affected (RHEL7 specific CVE)
devel_linux-goldfish: not-affected (RHEL7 specific CVE)

Patches_linux-grouper:
upstream_linux-grouper: not-affected (RHEL7 specific CVE)
precise_linux-grouper: DNE
trusty_linux-grouper: ignored
trusty/esm_linux-grouper: DNE (trusty was ignored)
vivid/ubuntu-core_linux-grouper: DNE
vivid/stable-phone-overlay_linux-grouper: DNE
wily_linux-grouper: DNE
xenial_linux-grouper: DNE
devel_linux-grouper: DNE

Patches_linux-maguro:
upstream_linux-maguro: not-affected (RHEL7 specific CVE)
precise_linux-maguro: DNE
trusty_linux-maguro: ignored
trusty/esm_linux-maguro: DNE (trusty was ignored)
vivid/ubuntu-core_linux-maguro: DNE
vivid/stable-phone-overlay_linux-maguro: DNE
wily_linux-maguro: DNE
xenial_linux-maguro: DNE
devel_linux-maguro: DNE

Patches_linux-mako:
upstream_linux-mako: not-affected (RHEL7 specific CVE)
precise_linux-mako: DNE
trusty_linux-mako: ignored
trusty/esm_linux-mako: DNE (trusty was ignored)
vivid/ubuntu-core_linux-mako: DNE
vivid/stable-phone-overlay_linux-mako: not-affected
wily_linux-mako: not-affected (RHEL7 specific CVE)
xenial_linux-mako: not-affected (RHEL7 specific CVE)
devel_linux-mako: not-affected (RHEL7 specific CVE)

Patches_linux-manta:
upstream_linux-manta: not-affected (RHEL7 specific CVE)
precise_linux-manta: DNE
trusty_linux-manta: ignored
trusty/esm_linux-manta: DNE (trusty was ignored)
vivid/ubuntu-core_linux-manta: DNE
vivid/stable-phone-overlay_linux-manta: DNE
wily_linux-manta: not-affected (RHEL7 specific CVE)
xenial_linux-manta: DNE
devel_linux-manta: DNE

Patches_linux-flo:
upstream_linux-flo: not-affected (RHEL7 specific CVE)
precise_linux-flo: DNE
trusty_linux-flo: ignored
trusty/esm_linux-flo: DNE (trusty was ignored)
vivid/ubuntu-core_linux-flo: DNE
vivid/stable-phone-overlay_linux-flo: not-affected
wily_linux-flo: not-affected (RHEL7 specific CVE)
xenial_linux-flo: not-affected (RHEL7 specific CVE)
devel_linux-flo: not-affected (RHEL7 specific CVE)

Patches_linux-raspi2:
upstream_linux-raspi2: not-affected (RHEL7 specific CVE)
precise_linux-raspi2: DNE
trusty_linux-raspi2: DNE
trusty/esm_linux-raspi2: DNE
vivid/ubuntu-core_linux-raspi2: not-affected (RHEL7 specific CVE)
vivid/stable-phone-overlay_linux-raspi2: DNE
wily_linux-raspi2: not-affected (RHEL7 specific CVE)
xenial_linux-raspi2: not-affected (RHEL7 specific CVE)
devel_linux-raspi2: not-affected (RHEL7 specific CVE)

Patches_linux-lts-utopic:
upstream_linux-lts-utopic: not-affected (RHEL7 specific CVE)
precise_linux-lts-utopic: DNE
trusty_linux-lts-utopic: not-affected (RHEL7 specific CVE)
trusty/esm_linux-lts-utopic: DNE (trusty was not-affected [RHEL7 specific CVE])
vivid/ubuntu-core_linux-lts-utopic: DNE
vivid/stable-phone-overlay_linux-lts-utopic: DNE
wily_linux-lts-utopic: DNE
xenial_linux-lts-utopic: DNE
devel_linux-lts-utopic: DNE

Patches_linux-lts-vivid:
upstream_linux-lts-vivid: not-affected (RHEL7 specific CVE)
precise_linux-lts-vivid: DNE
trusty_linux-lts-vivid: not-affected (RHEL7 specific CVE)
trusty/esm_linux-lts-vivid: DNE (trusty was not-affected [RHEL7 specific CVE])
vivid/ubuntu-core_linux-lts-vivid: DNE
vivid/stable-phone-overlay_linux-lts-vivid: DNE
wily_linux-lts-vivid: DNE
xenial_linux-lts-vivid: DNE
devel_linux-lts-vivid: DNE

Patches_linux-lts-wily:
upstream_linux-lts-wily: not-affected (RHEL7 specific CVE)
precise_linux-lts-wily: DNE
trusty_linux-lts-wily: not-affected (RHEL7 specific CVE)
trusty/esm_linux-lts-wily: DNE (trusty was not-affected [RHEL7 specific CVE])
vivid/ubuntu-core_linux-lts-wily: DNE
vivid/stable-phone-overlay_linux-lts-wily: DNE
wily_linux-lts-wily: DNE
xenial_linux-lts-wily: DNE
devel_linux-lts-wily: DNE

Patches_linux-lts-xenial:
upstream_linux-lts-xenial: not-affected (RHEL7 specific CVE)
precise_linux-lts-xenial: DNE
trusty_linux-lts-xenial: not-affected (RHEL7 specific CVE)
trusty/esm_linux-lts-xenial: not-affected (RHEL7 specific CVE)
vivid/ubuntu-core_linux-lts-xenial: DNE
vivid/stable-phone-overlay_linux-lts-xenial: DNE
wily_linux-lts-xenial: DNE
xenial_linux-lts-xenial: DNE
devel_linux-lts-xenial: DNE

Patches_linux-snapdragon:
upstream_linux-snapdragon: not-affected (RHEL7 specific CVE)
precise_linux-snapdragon: DNE
trusty_linux-snapdragon: DNE
trusty/esm_linux-snapdragon: DNE
vivid/ubuntu-core_linux-snapdragon: DNE
vivid/stable-phone-overlay_linux-snapdragon: DNE
wily_linux-snapdragon: DNE
xenial_linux-snapdragon: not-affected (RHEL7 specific CVE)
devel_linux-snapdragon: not-affected (RHEL7 specific CVE)