Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invalid USB descriptor.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "16721571475255485700473001628842504764", "17289669459536867120007480577300052962", "319278904333565889433827996781764298906", "277274752641789341500003351540668201324", "50246583011818038052463681924835510186", "46035487715839656845053575215527117051", "333970429010789434127091647313930674286", "104689051620079696231782629879227485189", "200008885112088069640728560977406221632", "145752909904495794613978611658917127653", "41572013736502710981796468468461618488", "28023912177656051863575140590578001341", "72196937098054878090823487298164405815", "269485799618491737862355534653837620492", "294576941766132635052697133544897587764", "15163411507931703265727768236981616225", "331219525920874214798072691617640019793", "44048747127738177731413466235455355494", "192977888377453716965372866832804538785", "123148374647998979813896302956040911490", "93438911086468144530551045682327403548" ] }, "source": "https://github.com/torvalds/linux/commit/4d06dd537f95683aba3651098ae288b7cbff8274", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-14e0e4d1", "target": { "file": "drivers/net/usb/cdc_ncm.c" } }, { "digest": { "function_hash": "228353678177635374667099376371956362744", "length": 4005.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@1666984c8625b3db19a9abc298931d35ab7bc64b", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-27a9bca2", "target": { "file": "drivers/net/usb/usbnet.c", "function": "usbnet_probe" } }, { "digest": { "function_hash": "169892585044219801637061397589529292320", "length": 257.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@4d06dd537f95683aba3651098ae288b7cbff8274", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-4033afff", "target": { "file": "drivers/net/usb/cdc_ncm.c", "function": "cdc_ncm_bind" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "56696926925771083234173573421981485685", "337217476799553404856774345546388882248", "107485027516154100549341329701630307797", "228629095085287262988912543034738476637" ] }, "source": "https://github.com/torvalds/linux/commit/1666984c8625b3db19a9abc298931d35ab7bc64b", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-6d9c5b68", "target": { "file": "drivers/net/usb/usbnet.c" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "56696926925771083234173573421981485685", "337217476799553404856774345546388882248", "107485027516154100549341329701630307797", "228629095085287262988912543034738476637" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@1666984c8625b3db19a9abc298931d35ab7bc64b", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-82ada456", "target": { "file": "drivers/net/usb/usbnet.c" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "16721571475255485700473001628842504764", "17289669459536867120007480577300052962", "319278904333565889433827996781764298906", "277274752641789341500003351540668201324", "50246583011818038052463681924835510186", "46035487715839656845053575215527117051", "333970429010789434127091647313930674286", "104689051620079696231782629879227485189", "200008885112088069640728560977406221632", "145752909904495794613978611658917127653", "41572013736502710981796468468461618488", "28023912177656051863575140590578001341", "72196937098054878090823487298164405815", "269485799618491737862355534653837620492", "294576941766132635052697133544897587764", "15163411507931703265727768236981616225", "331219525920874214798072691617640019793", "44048747127738177731413466235455355494", "192977888377453716965372866832804538785", "123148374647998979813896302956040911490", "93438911086468144530551045682327403548" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@4d06dd537f95683aba3651098ae288b7cbff8274", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-87f7cbfa", "target": { "file": "drivers/net/usb/cdc_ncm.c" } }, { "digest": { "function_hash": "169892585044219801637061397589529292320", "length": 257.0 }, "source": "https://github.com/torvalds/linux/commit/4d06dd537f95683aba3651098ae288b7cbff8274", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-bffed6a0", "target": { "file": "drivers/net/usb/cdc_ncm.c", "function": "cdc_ncm_bind" } }, { "digest": { "function_hash": "228353678177635374667099376371956362744", "length": 4005.0 }, "source": "https://github.com/torvalds/linux/commit/1666984c8625b3db19a9abc298931d35ab7bc64b", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3951-dba10b7c", "target": { "file": "drivers/net/usb/usbnet.c", "function": "usbnet_probe" } } ] }