CVE-2016-2782

The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a (1) bulk-in or (2) interrupt-in endpoint.

Published : 2016-04-27 17:59 Updated : 2017-09-08 01:29

4.9
CVSS Score More info
Score 4.9 / 10
4.9
Vendor Product Version URI
Novell Suse Linux Enterprise Server 12.0 cpe:/o:novell:suse_linux_enterprise_server:12.0
Novell Suse Linux Enterprise Server 11 cpe:/o:novell:suse_linux_enterprise_server:11:extra
Novell Suse Linux Enterprise Software Development Kit 12 cpe:/o:novell:suse_linux_enterprise_software_development_kit:12
Novell Suse Linux Enterprise Live Patching 12 cpe:/o:novell:suse_linux_enterprise_live_patching:12
Novell Suse Linux Enterprise Real Time Extension 11 cpe:/o:novell:suse_linux_enterprise_real_time_extension:11:sp4
Novell Suse Linux Enterprise Software Development Kit 11.0 cpe:/o:novell:suse_linux_enterprise_software_development_kit:11.0:sp4
Novell Suse Linux Enterprise Debuginfo 11 cpe:/o:novell:suse_linux_enterprise_debuginfo:11:sp4
Linux Linux Kernel 4.5.0 cpe:/o:linux:linux_kernel:4.5.0:rc7
Novell Suse Linux Enterprise Real Time Extension 12 cpe:/o:novell:suse_linux_enterprise_real_time_extension:12:sp1
Novell Suse Linux Enterprise Desktop 12.0 cpe:/o:novell:suse_linux_enterprise_desktop:12.0
Novell Suse Linux Enterprise Module For Public Cloud 12 cpe:/o:novell:suse_linux_enterprise_module_for_public_cloud:12
Novell Suse Linux Enterprise Workstation Extension 12 cpe:/o:novell:suse_linux_enterprise_workstation_extension:12
Novell Suse Linux Enterprise Server 11 cpe:/o:novell:suse_linux_enterprise_server:11:sp4
  1. Novell (8) Search CVE
    1. Suse Linux Enterprise Workstation Extension (1) Search CVE
      1. 12
    2. Suse Linux Enterprise Live Patching (1) Search CVE
      1. 12
    3. Suse Linux Enterprise Real Time Extension (2) Search CVE
      1. 11
      2. 12
    4. Suse Linux Enterprise Module For Public Cloud (1) Search CVE
      1. 12
    5. Suse Linux Enterprise Software Development Kit (2) Search CVE
      1. 12
      2. 11.0
    6. Suse Linux Enterprise Debuginfo (1) Search CVE
      1. 11
    7. Suse Linux Enterprise Server (2) Search CVE
      1. 12.0
      2. 11
    8. Suse Linux Enterprise Desktop (1) Search CVE
      1. 12.0
  2. Linux (1) Search CVE
    1. Linux Kernel (1) Search CVE
      1. 4.5.0

CWE

There is no CWE for this CVE.

History of changes

Date Event
2017-09-08 05:34
2016-04-27 17:59

New CVE