Alan Stern

5 exploits Active since Feb 2013
CVE-2013-1773 WRITEUP WRITEUP
Linux Kernel < 3.3 - Buffer Overflow in VFAT Filesystem UTF-8 to UTF-16 Conversion
Buffer overflow in the VFAT filesystem implementation in the Linux kernel before 3.3 allows local users to gain privileges or cause a denial of service (system crash) via a VFAT write operation on a filesystem with the utf8 mount option, which is not properly handled during UTF-8 to UTF-16 conversion.
CVE-2017-16530 WRITEUP MEDIUM WRITEUP
Linux Kernel < 3.16.50 - Out-of-bounds Read via USB Storage UAS Driver
The uas driver in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device, related to drivers/usb/storage/uas-detect.h and drivers/usb/storage/uas.c.
CVSS 6.6
CVE-2017-16532 WRITEUP MEDIUM WRITEUP
Linux Kernel < 3.2.95 - Denial of Service via USB Device in usbtest
The get_endpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.
CVSS 6.6
CVE-2017-16535 WRITEUP MEDIUM WRITEUP
Linux Kernel < 4.13.9 - Out-of-bounds Read in USB BOS Descriptor Handling
The usb_get_bos_descriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVSS 6.6
CVE-2020-12464 WRITEUP MEDIUM WRITEUP
Linux kernel <5.6.8 - Use After Free
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.
CVSS 6.7