VYPR
Medium severity6.6NVD Advisory· Published Dec 12, 2017· Updated Jun 17, 2026

CVE-2017-17558

CVE-2017-17558

Description

The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces before attempting to release resources, which allows local users to cause a denial of service (out-of-bounds write access) or possibly have unspecified other impact via a crafted USB device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

62

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.