5.5

CVE-2017-18360

In change_port_settings in drivers/usb/serial/io_ti.c in the Linux kernel before 4.11.3, local users could cause a denial of service by division-by-zero in the serial device layer by trying to set very high baud rates.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.11.3
CanonicalUbuntu Linux Version12.04 SwEditionesm
CanonicalUbuntu Linux Version14.04 SwEditionlts
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.43% 0.342
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
CWE-369 Divide By Zero

The product divides a value by zero.

https://usn.ubuntu.com/3933-1/
Third Party Advisory
https://usn.ubuntu.com/3933-2/
Third Party Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6aeb75e6adfaed16e58780309613a578fe1ee90b
Patch
Vendor Advisory
http://www.securityfocus.com/bid/106802
Third Party Advisory
VDB Entry
https://bugzilla.suse.com/show_bug.cgi?id=1123706
Third Party Advisory
Issue Tracking
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.3
Vendor Advisory
Release Notes
https://github.com/torvalds/linux/commit/6aeb75e6adfaed16e58780309613a578fe1ee90b
Patch
Third Party Advisory