CVE-2017-16534

Priority
Description
The cdc_parse_cdc_header function in drivers/usb/core/message.c in the
Linux kernel before 4.13.6 allows local users to cause a denial of service
(out-of-bounds read and system crash) or possibly have unspecified other
impact via a crafted USB device.
Ubuntu-Description
Andrey Konovalov discovered that the USB subsystem in the Linux kernel did
not properly validate CDC metadata. A physically proximate attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code.
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.13.0-17.20)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Ubuntu 16.06 ESM (Xenial Xerus):released (4.4.0-101.124)
Patches:
Introduced by
c40a2c8817e42273a4627c48c884b805475a733f
Fixed by
2e1c42391ff2556387b3cb6308b24f6f65619feb
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1001.1)
Ubuntu 14.04 ESM (Trusty Tahr):released (4.4.0-1003.3)
Ubuntu 16.06 ESM (Xenial Xerus):released (4.4.0-1041.50)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1002.2)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (4.15.0-1023.24~14.04.1)
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-1005.7)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.18.0-1003.3~18.04.1)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1001.1)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-1002.5)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-26.29~16.04.2)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.18.0-8.9~18.04.1)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-26.29~16.04.2)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1002.2)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.4.0-1010.15)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [out of standard support])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [was needs-triage now end-of-life])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [out of standard support])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):released (4.4.0-101.124~14.04.1)
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1002.3)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):not-affected (4.15.0-1004.5)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.13.0-1006.6)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):not-affected (4.15.0-1010.11)
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc4)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
More Information

Updated: 2021-10-21 05:34:16 UTC (commit 1bbbce2fb1a3c15b20fcf10f0073e1fb6ad43ae6)