CVE-2015-8816

First published: Wed Feb 24 2016(Updated: )

Quickly plugging in and unplugging a USB hub can lead to a null pointer dereference in kernel (local denial of service) or the USB port to which the hub is connected becomes unusable, for kernel versions 2.6.32 &lt; 4.4. The issue occurs when the USB hub gets disconnected before or while the routine for USB hub activation is running - hub_activate() function. Upstream patch: <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e50293ef9775c5">https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e50293ef9775c5</a> External references: <a href="http://www.spinics.net/lists/linux-usb/msg132311.html">http://www.spinics.net/lists/linux-usb/msg132311.html</a> CVE-ID request and assignment: <a href="http://seclists.org/oss-sec/2016/q1/404">http://seclists.org/oss-sec/2016/q1/404</a> <a href="http://seclists.org/oss-sec/2016/q1/413">http://seclists.org/oss-sec/2016/q1/413</a>

Credit: cve@mitre.org cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/author
• agent/type
• agent/first-publish-date
• agent/references
• agent/severity
• agent/remedy
• agent/description
• collector/nvd-index
• agent/software-canonical-lookup-request
• collector/nvd-api
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/tags
• agent/event
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2015-8816
• vendor/novell
• canonical/novell suse linux enterprise software development kit
• version/novell suse linux enterprise software development kit/11.0-sp4
• version/novell suse linux enterprise software development kit/12.0
• canonical/novell suse linux enterprise debuginfo
• version/novell suse linux enterprise debuginfo/11-sp4
• canonical/novell suse linux enterprise desktop
• version/novell suse linux enterprise desktop/12.0
• canonical/novell suse linux enterprise live patching
• version/novell suse linux enterprise live patching/12.0
• canonical/novell suse linux enterprise module for public cloud
• version/novell suse linux enterprise module for public cloud/12
• canonical/novell suse linux enterprise real time extension
• version/novell suse linux enterprise real time extension/11-sp4
• version/novell suse linux enterprise real time extension/12-sp1
• canonical/novell suse linux enterprise server
• version/novell suse linux enterprise server/11-extra
• version/novell suse linux enterprise server/11-sp4
• version/novell suse linux enterprise server/12.0
• canonical/novell suse linux enterprise workstation extension
• version/novell suse linux enterprise workstation extension/12.0
• vendor/linux
• canonical/linux linux kernel
• version/linux linux kernel/4.3.4
• version/linux linux kernel/2.6.28
• version/linux linux kernel/3.3
• version/linux linux kernel/3.5
• version/linux linux kernel/3.11
• version/linux linux kernel/3.13
• version/linux linux kernel/3.15
• version/linux linux kernel/3.17
• version/linux linux kernel/3.19
• version/linux linux kernel/4.2
• vendor/suse
• canonical/suse linux enterprise live patching
• version/suse linux enterprise live patching/12
• canonical/suse linux enterprise server
• version/suse linux enterprise server/12