4.9

CVE-2016-2187

EPSS 0.04%
Veröffentlicht 02.05.2016 10:59:30
Zuletzt bearbeitet 06.05.2026 22:30:45
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 22

NVD 9 VulnDex Vulnerability Enrichment 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Canonical ≫ Ubuntu Linux Version12.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version14.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version15.10

Canonical ≫ Ubuntu Linux Version16.04 SwEditionlts

Linux ≫ Linux Kernel Version <= 4.5.2

Novell ≫ Suse Linux Enterprise Software Development Kit Version11.0 Updatesp4

Novell ≫ Suse Linux Enterprise Debuginfo Version11 Updatesp4

Novell ≫ Suse Linux Enterprise Server Version11 Updateextra

Novell ≫ Suse Linux Enterprise Server Version11 Updatesp4

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.133

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.6	0.9	3.6	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	4.9	3.9	6.9	AV:L/AC:L/Au:N/C:N/I:N/A:C

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://www.ubuntu.com/usn/USN-2989-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-2998-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3000-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3001-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3002-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3003-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3004-1

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

Third Party Advisory

http://www.debian.org/security/2016/dsa-3607

http://www.ubuntu.com/usn/USN-2996-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-2997-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3005-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3006-1

Third Party Advisory

http://www.ubuntu.com/usn/USN-3007-1

Third Party Advisory

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=162f98dea487206d9ab79fc12ed64700667a894d

Patch

Vendor Advisory

http://www.securityfocus.com/bid/85425

https://bugzilla.redhat.com/show_bug.cgi?id=1317017

Issue Tracking

https://github.com/torvalds/linux/commit/162f98dea487206d9ab79fc12ed64700667a894d

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2016-2187

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-2187

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-2187

EUVD