APPLIED: [SRU][Trusty][PATCH 0/1] Fix for CVE-2017-15265
Khaled Elmously
khalid.elmously at canonical.com
Fri Jun 8 21:43:22 UTC 2018
Applied to Trusty
On 2018-06-07 16:28:55 , Kleber Souza wrote:
> https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-15265.html
>
> Race condition in the ALSA subsystem in the Linux kernel before 4.13.8
> allows local users to cause a denial of service (use-after-free) or
> possibly have unspecified other impact via crafted /dev/snd/seq ioctl
> calls, related to sound/core/seq/seq_clientmgr.c and
> sound/core/seq/seq_ports.c.
>
> Only Trusty is currently affected. Backport was needed only for context
> ajustment.
>
> Takashi Iwai (1):
> ALSA: seq: Fix use-after-free at creating a port
>
> sound/core/seq/seq_clientmgr.c | 6 +++++-
> sound/core/seq/seq_ports.c | 7 +++++--
> 2 files changed, 10 insertions(+), 3 deletions(-)
>
> --
> 2.17.0
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list