CVE Vulnerabilities

CVE-2016-3689

Published: May 02, 2016 | Modified: Sep 12, 2023
CVSS 3.x
4.6
MEDIUM
Source:
NVD
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
4.9 MEDIUM
AV:L/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface.

Affected Software

Name Vendor Start Version End Version
Suse_linux_enterprise_module_for_public_cloud Novell 12.0 12.0
Suse_linux_enterprise_server Novell 12.0 12.0
Suse_linux_enterprise_live_patching Novell 12.0 12.0
Suse_linux_enterprise_server Novell 12.0 12.0
Suse_linux_enterprise_desktop Novell 12.0 12.0
Suse_linux_enterprise_real_time_extension Novell 12.0 12.0
Suse_linux_enterprise_desktop Novell 12.0 12.0
Suse_linux_enterprise_workstation_extension Novell 12.0 12.0
Suse_linux_enterprise_workstation_extension Novell 12.0 12.0
Suse_linux_enterprise_software_development_kit Novell 12.0 12.0
Suse_linux_enterprise_software_development_kit Novell 12.0 12.0

References