First published: Sat Jul 27 2019(Updated: )
A vulnerability was found in Linux Kernel, an out-of-bounds read occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. The maximum size for a DiSEqC command is 6, according to the userspace API. However, the code allows larger values such as 23. This was originally classfied as a buffer-overflow but it is not. It has been reclassified as a possible information leak. Reference: <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1fa2337a315a2448c5434f41e00d56b01a22283c">https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1fa2337a315a2448c5434f41e00d56b01a22283c</a> <a href="https://github.com/torvalds/linux/commit/1fa2337a315a2448c5434f41e00d56b01a22283c">https://github.com/torvalds/linux/commit/1fa2337a315a2448c5434f41e00d56b01a22283c</a> <a href="https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.4">https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.4</a>
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel-rt | <0:3.10.0-1127.rt56.1093.el7 | 0:3.10.0-1127.rt56.1093.el7 |
redhat/kernel | <0:3.10.0-1127.el7 | 0:3.10.0-1127.el7 |
Linux Linux kernel | <4.1.4 | |
IBM Data Risk Manager | <=2.0.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.