Vulnerability Details : CVE-2017-16645

The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.

Vulnerability category: Denial of service

Published 2017-11-07 23:29:00

Updated 2018-08-24 10:29:02

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2017-16645

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2017-16645

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	nvd@nist.gov
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
6.6	MEDIUM	CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	0.7	5.9	nvd@nist.gov
Attack Vector: Physical Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2017-16645

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-16645

https://usn.ubuntu.com/3754-1/

USN-3754-1: Linux kernel vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://usn.ubuntu.com/3617-2/

USN-3617-2: Linux (HWE) vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://usn.ubuntu.com/3617-1/

USN-3617-1: Linux kernel vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://github.com/torvalds/linux/commit/ea04efee7635c9120d015dcdeeeb6988130cb67a

Input: ims-psu - check if CDC union descriptor is sane · torvalds/linux@ea04efe · GitHub
Mailing List;Third Party Advisory
https://usn.ubuntu.com/3619-1/

USN-3619-1: Linux kernel vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://usn.ubuntu.com/3619-2/

USN-3619-2: Linux kernel (Xenial HWE) vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://usn.ubuntu.com/3617-3/

USN-3617-3: Linux kernel (Raspberry Pi 2) vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.securityfocus.com/bid/101768

Linux Kernel 'drivers/input/misc/ims-pcu.c' Local Denial of Service Vulnerability
Third Party Advisory;VDB Entry
https://groups.google.com/d/msg/syzkaller/q6jjr1OhqO8/WcA99AVFBAAJ

usb/misc/ims-pcu: slab-out-of-bounds in ims_pcu_parse_cdc_data - Google Groepen
Mailing List;Third Party Advisory

Products affected by CVE-2017-16645

Linux » Linux Kernel
Versions up to, including, (<=) 4.13.11
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions