CVE-2016-3689 (retired)

Priority
Description
The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the
Linux kernel before 4.5.1 allows physically proximate attackers to cause a
denial of service (system crash) via a USB device without both a master and
a slave interface.
Ubuntu-Description
It was discovered that the Linux kernel's USB driver for IMS Passenger
Control Unit devices did not properly validate the device's interfaces. An
attacker with physical access could use this to cause a denial of service
(system crash).
Notes
 jdstrand> android kernels (flo, goldfish, grouper, maguro, mako and manta) are
  not supported on the Ubuntu Touch 14.10 and earlier preview kernels
 jdstrand> linux-lts-saucy no longer receives official support
 jdstrand> linux-lts-quantal no longer receives official support
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):released (4.4.0-22.39)
Patches:
Introduced by 628329d52474323938a03826941e166bc7c8eff4Fixed by a0ad220c96692eda76b2e3fd7279f3dcd1d8a8ff
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.4.0-1001.10)
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.4.0-1003.3)
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.8.0-36.36~16.04.1)
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.8.0-36.36~16.04.1)
Product
linux-krillin:not-affected
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):released (4.4.0-1010.12)
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):released (4.4.0-1013.14)
Package
Upstream:released (4.6~rc1)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Product
linux-vegetahd:not-affected
More Information

Updated: 2019-09-19 15:57:50 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)