CVE-2017-8071 : drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock

drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock without considering that sleeping is possible in a USB HID request callback, which allows local users to cause a denial of service (deadlock) via unspecified vectors.

Published 2017-04-23 05:59:01

Updated 2017-04-28 16:24:13

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2017-8071

Linux » Linux Kernel » Version: 4.9.5
cpe:2.3:o:linux:linux_kernel:4.9.5:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9
cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9.1
cpe:2.3:o:linux:linux_kernel:4.9.1:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9.2
cpe:2.3:o:linux:linux_kernel:4.9.2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9.3
cpe:2.3:o:linux:linux_kernel:4.9.3:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9.4
cpe:2.3:o:linux:linux_kernel:4.9.4:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9.6
cpe:2.3:o:linux:linux_kernel:4.9.6:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 4.9.8
cpe:2.3:o:linux:linux_kernel:4.9.8:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-8071

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 12 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-8071

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:N/A:P	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
5.5	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2017-8071

CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-8071

http://www.openwall.com/lists/oss-security/2017/04/16/4

oss-security - Silently (or obliviously) partially-fixed CONFIG_STRICT_DEVMEM bypass
Mailing List;Patch;Third Party Advisory

CVEs referencing this url
https://github.com/torvalds/linux/commit/7a7b5df84b6b4e5d599c7289526eed96541a0654

HID: cp2112: fix sleep-while-atomic · torvalds/linux@7a7b5df · GitHub
Patch
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7a7b5df84b6b4e5d599c7289526eed96541a0654

kernel/git/torvalds/linux.git - Linux kernel source tree
Patch
http://www.securityfocus.com/bid/97991

Linux Kernel 'drivers/hid/hid-cp2112.c' Local Denial of Service Vulnerability
Third Party Advisory;VDB Entry
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.9

Release Notes;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2017-8071

Products affected by CVE-2017-8071

Exploit prediction scoring system (EPSS) score for CVE-2017-8071

CVSS scores for CVE-2017-8071

CWE ids for CVE-2017-8071

References for CVE-2017-8071