ACK: [PATCH 0/1][SRU][D] CVE-2019-15505: technisat-usb2 OOB read

Kamal Mostafa kamal at canonical.com
Mon Sep 30 15:30:21 UTC 2019


Clean mainline cherry pick.  LGTM.

Acked-by: Kamal Mostafa <kamal at canonical.com>

 -Kamal

On Fri, Sep 27, 2019 at 08:51:36PM +0000, Tyler Hicks wrote:
> https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-15505.html
> 
>  drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through
>  5.2.9 has an out-of-bounds read via crafted USB device traffic (which
>  may be remote via usbip or usbredir).
> 
> Clean cherry pick. Build logs are clean.
> 
> Tyler
> 
> Sean Young (1):
>   media: technisat-usb2: break out of loop at end of buffer
> 
>  drivers/media/usb/dvb-usb/technisat-usb2.c | 22 ++++++++++------------
>  1 file changed, 10 insertions(+), 12 deletions(-)
> 
> -- 
> 2.17.1
> 
> 
> -- 
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team



More information about the kernel-team mailing list