DEBIAN-CVE-2014-3184

Advisory lineage Upstream: 1 Downstream: 1

Upstream

CVE-2014-3184

Downstream

DLA-246-1

Published: 28 Sept 2014, 10:55

Last modified:28 Apr 2026, 20:13

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

28 Sept 2014, 10:55

Published

Vulnerability first disclosed

28 Apr 2026, 20:13

Last Modified

Vulnerability information updated

Description

The report_fixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate attackers to cause a denial of service (out-of-bounds write) via a crafted device that provides a small report descriptor, related to (1) drivers/hid/hid-cherry.c, (2) drivers/hid/hid-kye.c, (3) drivers/hid/hid-lg.c, (4) drivers/hid/hid-monterey.c, (5) drivers/hid/hid-petalynx.c, and (6) drivers/hid/hid-sunplus.c.

Affected Systems

debian•linux
< 3.16.2-2 | < 3.16.2-2 | < 3.16.2-2 | < 3.16.2-2

References (1)

https://security-tracker.debian.org/tracker/CVE-2014-3184