Alan Stern - Security Researcher - Exploit Intelligence Platform

CVE-2017-16530 WRITEUP MEDIUM WRITEUP

Linux kernel <4.13.6 - DoS

The uas driver in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device, related to drivers/usb/storage/uas-detect.h and drivers/usb/storage/uas.c.

CVSS 6.6

View Code

CVE-2017-16532 WRITEUP MEDIUM WRITEUP

Linux kernel <4.13.11 - DoS

The get_endpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.

CVSS 6.6

View Code

CVE-2017-16535 WRITEUP MEDIUM WRITEUP

Linux kernel <4.13.10 - DoS

The usb_get_bos_descriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.

CVSS 6.6

View Code

CVE-2020-12464 WRITEUP MEDIUM WRITEUP

Linux kernel <5.6.8 - Use After Free

usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.

CVSS 6.7

View Code