** Changed in: linux-snapdragon (Ubuntu Precise)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Precise)
Importance: Undecided => Medium
** Changed in: linux-snapdragon (Ubuntu Wily)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Wily)
Importance: Undecided => Medium
** Changed in: linux-snapdragon (Ubuntu Xenial)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Xenial)
Importance: Undecided => Medium
** Changed in: linux-snapdragon (Ubuntu Yakkety)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Yakkety)
Importance: Undecided => Medium
** Changed in: linux-snapdragon (Ubuntu Trusty)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Trusty)
Importance: Undecided => Medium
** Description changed:
- It was discovered that the Linux kernel failed to take a reference to
- the usb_hub structure or to lock the hub interface while initializing
- USB hubs. As a result, if a hub is plugged in and quickly unplugged
- before the work routine can run, the routine will try to access memory
- that has been deallocated. Or, if the hub is unplugged while the routine
- is running, the memory may be deallocated while it is in active use.
+ The hub_activate function in drivers/usb/core/hub.c in the Linux kernel
+ before 4.3.5 does not properly maintain a hub-interface data structure,
+ which allows physically proximate attackers to cause a denial of service
+ (invalid memory access and system crash) or possibly have unspecified
+ other impact by unplugging a USB hub device.
Break-Fix: 8520f38099ccfdac2147a0852f84ee7a8ee5e197
e50293ef9775c5f1cf3fcc093037dd6a8c5684ea
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1549178
Title:
CVE-2015-8816
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1549178/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
