H3C Security Vulnerability - Linux Kernal DoS attack vulnerability- CVE-2017-16525
04-02-2021【Summary】
The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device, related to disconnection and failed setup
【Impact】
The Linux kernel has a local denial of Service Vulnerability in its implementation, which can be exploited by an attacker to cause denial of service. Previous versions of Linux Kernel 4.13.8 were affected.
【Software Versions and Fixes】
Product Name | Affected Version | Resolved Product and Version |
License Server | All | TBC |
ADWAN | All | TBC |
VNFM | All | TBC |
SDN Controller(VCFC) | All | TBC |
NFVO | All | TBC |
SecPath D2000-G | All | TBR before 2020-01-31 |
Rack Server-G3 | All | TBR before 2020-01-31 |
Rack Server-G2 | All | TBR before 2020-01-31 |
Comware V7 | All | TBC |
DI | All | E0108 |
H3C DataEngine DG | All | D008 |
DataEngine | All | TBR before 2020-01-31 |
【Temporary Fix】
None
【Revision History】
2020-01-30 V1.0 INITIAL
H3C advocates that every effort be made to safeguard the ultimate interests of product users, to abide by principles of responsible disclosure of security incidents, and to handle product security issues in accordance with security issues mechanisms. For information on H3C's security emergency response service and H3C product vulnerabilities, please visithttps://www.h3c.com/en/Support/Online_Help/psirt/.