CVE-2016-2384

MEDIUM

Linux Kernel < 4.4.8 - Denial of Service

Title source: rule

Description

Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an invalid USB descriptor.

Exploits (2)

github WORKING POC 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/kernel/EXP-CVE-2016-2384

View Code ZIP pw:eip

exploitdb WORKING POC

by Andrey Konovalov · textlocallinux

https://www.exploit-db.com/exploits/41999

View Code ZIP pw:eip

References (38)

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-2574.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-2584.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2017-0817.html

[Patch, Vendor Advisory] http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=07d86ca93db7e5cdf4743564d98292042ec21af7

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html

[Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1035072

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2928-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2928-2

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2929-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2929-2

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2930-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2930-2

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2930-3

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2931-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2932-1

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=1308444

[Patch] https://github.com/torvalds/linux/commit/07d86ca93db7e5cdf4743564d98292042ec21af7

... and 18 more

Scores

CVSS v3 4.6

EPSS 0.0898

EPSS Percentile 92.5%

Attack Vector PHYSICAL

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

Status draft

Affected Products (2)

linux/linux_kernel < 4.4.8

novell/suse_linux_enterprise_real_time_extension

Timeline

Published Apr 27, 2016

Tracked Since Feb 18, 2026