Vigil@nce - Linux kernel: multiple vulnerabilities of USB Driver
September 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of USB Driver of Linux
kernel.
Impacted products: Fedora, Linux
Severity: 2/4
Creation date: 12/09/2014
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in USB drivers of the Linux
kernel.
An attacker can force the usage of a freed memory area in
hid-logitech-dj.c, in order to trigger a denial of service, and
possibly to execute code. [severity:2/4; CVE-2014-3182]
An attacker can generate a buffer overflow in hid-logitech-dj.c,
in order to trigger a denial of service, and possibly to execute
code. [severity:2/4; CVE-2014-3183]
An attacker can generate a buffer overflow in x_report_fixup()
functions of hid-x.c, in order to trigger a denial of service, and
possibly to execute code. [severity:2/4; CVE-2014-3184]
An attacker can generate a buffer overflow in
drivers/usb/serial/whiteheat.c, in order to trigger a denial of
service, and possibly to execute code. [severity:2/4;
CVE-2014-3185]
An attacker can generate a buffer overflow in hid-magicmouse.c, in
order to trigger a denial of service, and possibly to execute
code. [severity:2/4; CVE-2014-3181]
An attacker can generate a buffer overflow in hid-picolcd_core.c,
in order to trigger a denial of service, and possibly to execute
code. [severity:2/4; CVE-2014-3186]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-of-USB-Driver-15343