Unrated severityNVD Advisory· Published Sep 28, 2014· Updated May 6, 2026

CVE-2014-3184

Description

The report_fixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate attackers to cause a denial of service (out-of-bounds write) via a crafted device that provides a small report descriptor, related to (1) drivers/hid/hid-cherry.c, (2) drivers/hid/hid-kye.c, (3) drivers/hid/hid-lg.c, (4) drivers/hid/hid-monterey.c, (5) drivers/hid/hid-petalynx.c, and (6) drivers/hid/hid-sunplus.c.

Affected products

Linux/Kernel2 versions
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.16.1
- cpe:2.3:o:linux:linux_kernel:3.16.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.orgnvd
lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.htmlnvd
lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.htmlnvd
lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.htmlnvd
lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.htmlnvd
rhn.redhat.com/errata/RHSA-2014-1318.htmlnvd
rhn.redhat.com/errata/RHSA-2015-1272.htmlnvd
www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.2nvd
www.openwall.com/lists/oss-security/2014/09/11/21nvd
www.securityfocus.com/bid/69768nvd
www.ubuntu.com/usn/USN-2374-1nvd
www.ubuntu.com/usn/USN-2375-1nvd
www.ubuntu.com/usn/USN-2376-1nvd
www.ubuntu.com/usn/USN-2377-1nvd
www.ubuntu.com/usn/USN-2378-1nvd
www.ubuntu.com/usn/USN-2379-1nvd
bugzilla.redhat.com/show_bug.cginvd
code.google.com/p/google-security-research/issues/detailnvd
github.com/torvalds/linux/commit/4ab25786c87eb20857bbb715c3ae34ec8fd6a214nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000