Vulnerability Details : CVE-2017-16538
drivers/media/usb/dvb-usb-v2/lmedm04.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (general protection fault and system crash) or possibly have unspecified other impact via a crafted USB device, related to a missing warm-start check and incorrect attach timing (dm04_lme2510_frontend_attach versus dm04_lme2510_tuner).
Vulnerability category: Input validationDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2017-16538
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2017-16538
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
6.6
|
MEDIUM | CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
0.7
|
5.9
|
NIST |
CWE ids for CVE-2017-16538
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-16538
-
https://usn.ubuntu.com/3754-1/
USN-3754-1: Linux kernel vulnerabilities | Ubuntu security notices
-
https://www.debian.org/security/2018/dsa-4082
Debian -- Security Information -- DSA-4082-1 linux
-
https://usn.ubuntu.com/3631-2/
USN-3631-2: Linux kernel (Xenial HWE) vulnerabilities | Ubuntu security notices
-
https://usn.ubuntu.com/3631-1/
USN-3631-1: Linux kernel vulnerabilities | Ubuntu security notices
-
http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.html
[security-announce] SUSE-SU-2018:0011-1: important: Security update for
-
https://patchwork.linuxtv.org/patch/44566/
[1/2] media: dvb-usb-v2: lmedm04: Improve logic checking of warm start. - PatchworkPatch;Third Party Advisory
-
https://patchwork.linuxtv.org/patch/44567/
[2/2] media: dvb-usb-v2: lmedm04: move ts2020 attach to dm04_lme2510_tuner - PatchworkPatch;Third Party Advisory
-
https://groups.google.com/d/msg/syzkaller/XwNidsl4X04/ti6I2IaRBAAJ
Google GroepenThird Party Advisory
-
https://www.debian.org/security/2017/dsa-4073
Debian -- Security Information -- DSA-4073-1 linux
Products affected by CVE-2017-16538
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*