CVE-2015-9289: Buffer Overflow
First published: Sat Jul 27 2019(Updated: )
A vulnerability was found in Linux Kernel, an out-of-bounds read occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. The maximum size for a DiSEqC command is 6, according to the userspace API. However, the code allows larger values such as 23. This was originally classfied as a buffer-overflow but it is not. It has been reclassified as a possible information leak. Reference: <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1fa2337a315a2448c5434f41e00d56b01a22283c">https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1fa2337a315a2448c5434f41e00d56b01a22283c</a> <a href="https://github.com/torvalds/linux/commit/1fa2337a315a2448c5434f41e00d56b01a22283c">https://github.com/torvalds/linux/commit/1fa2337a315a2448c5434f41e00d56b01a22283c</a> <a href="https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.4">https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.4</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:3.10.0-1127.rt56.1093.el7 | 0:3.10.0-1127.rt56.1093.el7 |
| redhat/kernel | <0:3.10.0-1127.el7 | 0:3.10.0-1127.el7 |
| Linux Linux kernel | <4.1.4 | |
| IBM Data Risk Manager | <=2.0.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://exchange.xforce.ibmcloud.com/vulnerabilities/166876
- https://www.ibm.com/support/pages/node/6335281 (Advisory)
- https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1fa2337a315a2448c5434f41e00d56b01a22283c
- https://github.com/torvalds/linux/commit/1fa2337a315a2448c5434f41e00d56b01a22283c
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.4
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1735656
- https://access.redhat.com/errata/RHSA-2020:1016
- https://access.redhat.com/errata/RHSA-2020:1070
- https://access.redhat.com/security/cve/cve-2015-9289
- https://bugzilla.redhat.com/show_bug.cgi?id=1735655
- https://www.cve.org/CVERecord?id=CVE-2015-9289 https://nvd.nist.gov/vuln/detail/CVE-2015-9289
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2015-9289
- agent/remedy
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/event
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- package-manager/redhat
- vendor/linux
- canonical/linux linux kernel
- vendor/ibm
- canonical/ibm data risk manager
- version/ibm data risk manager/2.0.6