Medium severity6.3NVD Advisory· Published Nov 15, 2017· Updated May 13, 2026

CVE-2017-15102

Description

The tower_probe function in drivers/usb/misc/legousbtower.c in the Linux kernel before 4.8.1 allows local users (who are physically proximate for inserting a crafted USB device) to gain privileges by leveraging a write-what-where condition that occurs after a race condition and a NULL pointer dereference.

Affected products

Canonical/Ubuntu Linux2 versions
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*+ 1 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <4.8.1
Red Hat/Enterprise Linux2 versions
cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Chatwoot/Linux Kernel Through Version 4.9 Rc1v5
Range: Linux kernel through version 4.9-rc1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/nvdIssue TrackingPatchVendor Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
github.com/torvalds/linux/commit/2fae9e5a7babada041e2e161699ade2447a01989nvdIssue TrackingPatchThird Party Advisory
seclists.org/oss-sec/2017/q4/238nvdIssue TrackingMailing ListThird Party Advisory
www.securityfocus.com/bid/101790nvdThird Party AdvisoryVDB Entry
usn.ubuntu.com/3583-1/nvdThird Party Advisory
usn.ubuntu.com/3583-2/nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.410
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000