Vulnerabilities

CVE-2017-15102

by Fred · 15/11/2017

The tower_probe function in drivers/usb/misc/legousbtower.c in the Linux kernel before 4.8.1 allows local users (who are physically proximate for inserting a crafted USB device) to gain privileges by leveraging a write-what-where condition that occurs after a race condition and a NULL pointer dereference.

Date published : 2017-11-15

http://www.securityfocus.com/bid/101790

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2fae9e5a7babada041e2e161699ade2447a01989

Similar

Tags: Cybersecurity Alert