CVE-2017-17558

The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces before attempting to release resources, which allows local users to cause a denial of service (out-of-bounds write access) or possibly have unspecified other impact via a crafted USB device.

Published: Dec 12, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-17558
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.6
AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	-	4.14.5.x
suse / linux_enterprise_server	11-sp4	11-sp4.x
suse / linux_enterprise_server	11-extra	11-extra.x

http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.html
http://openwall.com/lists/oss-security/2017/12/12/7
https://access.redhat.com/errata/RHSA-2018:0676
https://access.redhat.com/errata/RHSA-2018:1062
https://access.redhat.com/errata/RHSA-2019:1170
https://access.redhat.com/errata/RHSA-2019:1190
https://lists.debian.org/debian-lts-announce/2018/01/msg00004.html
https://usn.ubuntu.com/3619-1/
https://usn.ubuntu.com/3619-2/
https://usn.ubuntu.com/3754-1/
https://www.debian.org/security/2017/dsa-4073
https://www.debian.org/security/2018/dsa-4082
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
https://www.spinics.net/lists/linux-usb/msg163644.html

Vulnerability Database

CVE-2017-17558