QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2017-17975

Back to search

CVE-2017-17975

Published: Dec 30, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Use-after-free in the usbtv_probe function in drivers/media/usb/usbtv/usbtv-core.c in the Linux kernel through 4.14.10 allows attackers to cause a denial of service (system crash) or possibly have unspecified other impact by triggering failure of audio registration, because a kfree of the usbtv data structure occurs during a usbtv_video_free call, but the usbtv_video_fail label's code attempts to both access and free this data structure.

VendorProductVersions

n/a

n/a

affected
n/a

References

102330
vdb-entry
x_refsource_BID
USN-3654-1
vendor-advisory
x_refsource_UBUNTU
DSA-4188
vendor-advisory
x_refsource_DEBIAN
USN-3653-2
vendor-advisory
x_refsource_UBUNTU
USN-3654-2
vendor-advisory
x_refsource_UBUNTU
USN-3656-1
vendor-advisory
x_refsource_UBUNTU
USN-3653-1
vendor-advisory
x_refsource_UBUNTU
USN-3657-1
vendor-advisory
x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now