GCVE - cpe:2.3:a:flexera_software_llc:linux_kernel:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:flexera_software_llc:linux_kernel:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Flexera Software Llc (`c00ba63b-44d4-53e3-ae5d-5c8b1cecdf92`)
Product	Linux Kernel (`477f99bb-7eee-50fb-a582-001a8b8d98f4`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-16914`	vulnerable	2026-06-08 05:09:07.540262	Details available The "stub_send_ret_submit()" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP packet. Published: 2018-01-31T22:00:00.000Z Updated: 2024-09-17T01:42:05.146Z Open on db.gcve.eu Reference links https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.49 https://secuniaresearch.flexerasoftware.com/secunia_research/2017-21/ https://www.debian.org/security/2018/dsa-4187 https://usn.ubuntu.com/3619-2/ https://www.spinics.net/lists/linux-usb/msg163480.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-16913`	vulnerable	2026-06-08 05:09:07.539755	Details available The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP packet. Published: 2018-01-31T22:00:00.000Z Updated: 2024-09-16T19:47:31.753Z Open on db.gcve.eu Reference links https://secuniaresearch.flexerasoftware.com/secunia_research/2017-21/ https://www.debian.org/security/2018/dsa-4187 https://usn.ubuntu.com/3619-2/ https://secuniaresearch.flexerasoftware.com/advisories/80601/ https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.114	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-16912`	vulnerable	2026-06-08 05:09:07.539230	Details available The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet. Published: 2018-01-31T22:00:00.000Z Updated: 2024-09-17T03:48:33.745Z Open on db.gcve.eu Reference links https://secuniaresearch.flexerasoftware.com/secunia_research/2017-21/ https://www.debian.org/security/2018/dsa-4187 https://usn.ubuntu.com/3619-2/ https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.114 https://www.spinics.net/lists/linux-usb/msg163480.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-16911`	vulnerable	2026-06-08 05:09:07.538064	Details available The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP. Published: 2018-01-31T22:00:00.000Z Updated: 2024-09-16T23:06:46.855Z Open on db.gcve.eu Reference links https://www.debian.org/security/2018/dsa-4187 https://usn.ubuntu.com/3619-2/ https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.114 https://secuniaresearch.flexerasoftware.com/advisories/80454/ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/drivers/usb/usbip?id=2f2d0088eb93db5c649d2a5e34a3800a8a935fc5	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.