Kernel crash occurs when presented a buggy USB device which requires wacom driver, causing null pointer dereference. Product bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1283375 https://bugzilla.redhat.com/show_bug.cgi?id=1283377
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1317010]
Public via: http://seclists.org/bugtraq/2016/Mar/60 CVE request and assignment: http://seclists.org/oss-sec/2016/q1/606 http://seclists.org/oss-sec/2016/q1/623 Upstream commit: the upstream driver was rebased and does not have this bug, so this bug is rhel7-only and there is no upstream commit.
Acknowledgements: Name: Ralf Spenneberg (OpenSource Security)
Statement: This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and MRG-2. This has been rated as having Low security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.