From $URL : Linux kernel built with USB CDC WDM driver is vulnerable to heap buffer overflow flaw. An unprivileged local user could use this flaw to crash the kernel or, potentially, elevate their privileges. Please note that a physical access to the system or plugging in random USB device is needed in order to exploit this bug. Upstream fix: ------------- -> https://git.kernel.org/linus/c0f5ecee4e741667b2493c742b60b6218d40b3aa Reference: ----------- -> http://www.openwall.com/lists/oss-security/2013/03/14/12
Patch in mainline 3.9 onward