CVE-2017-16535

Priority
Description
The usb_get_bos_descriptor function in drivers/usb/core/config.c in the
Linux kernel before 4.13.10 allows local users to cause a denial of service
(out-of-bounds read and system crash) or possibly have unspecified other
impact via a crafted USB device.
Ubuntu-Description
Andrey Konovalov discovered that the USB subsystem in the Linux kernel did
not properly validate USB BOS metadata. A physically proximate attacker
could use this to cause a denial of service (system crash).
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.13.0-25.29)
Ubuntu 14.04 ESM (Trusty Tahr):released (3.13.0-157.207)
Ubuntu 16.06 ESM (Xenial Xerus):released (4.4.0-101.124)
Patches:
Introduced by
3148bf041d169a083aa31bd69bedd5bfb7ffe215
Fixed by
1c0edc3633b56000e18d82fc241e3995ca18a69e
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1001.1)
Ubuntu 14.04 ESM (Trusty Tahr):released (4.4.0-1003.3)
Ubuntu 16.06 ESM (Xenial Xerus):released (4.4.0-1041.50)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1002.2)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (4.15.0-1023.24~14.04.1)
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-1005.7)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.18.0-1003.3~18.04.1)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1001.1)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-1002.5)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-26.29~16.04.2)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.18.0-8.9~18.04.1)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.13.0-26.29~16.04.2)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1002.2)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):released (4.4.0-1010.15)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
This package is not directly supported by the Ubuntu Security Team
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [out of standard support])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [was needs-triage now end-of-life])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [out of standard support])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):released (4.4.0-101.124~14.04.1)
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was ignored [abandoned])
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.15.0-1002.3)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):not-affected (4.15.0-1004.5)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.13.0-1008.8)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):not-affected (4.15.0-1010.11)
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
Package
Upstream:released (4.14~rc6)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
More Information

Updated: 2021-10-21 05:34:16 UTC (commit 1bbbce2fb1a3c15b20fcf10f0073e1fb6ad43ae6)