kernel: media: use-after-free in [tuner-xc2028] media driver

🗓️ 10 Apr 2018 09:01:12Reported by RedHatType

Use-after-free in tuner xc2028 set_config in Linux kernel before 4.6 enables privilege escalation via missing firmware name.

Reporter	Title	Published	Views	Family All 153
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by Linux kernel vulnerabilities	25 Jul 201814:35	–	ibm
android	CVE-2016-7913	1 Nov 201600:00	–	android
Tenable Nessus	CentOS 7 : kernel (CESA-2018:1062)	27 Apr 201800:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1496)	13 May 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1528)	14 May 201900:00	–	nessus
Tenable Nessus	NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0070)	12 Aug 201900:00	–	nessus
Tenable Nessus	NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0074)	12 Aug 201900:00	–	nessus
Tenable Nessus	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1426)	12 Dec 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1428)	12 Dec 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1431)	12 Dec 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	x86_64	kernel-rt	0:3.10.0-862.rt56.804.el7	kernel-rt-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug	0:3.10.0-862.rt56.804.el7	kernel-rt-debug-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-debuginfo	0:3.10.0-862.rt56.804.el7	kernel-rt-debug-debuginfo-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-devel	0:3.10.0-862.rt56.804.el7	kernel-rt-debug-devel-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-kvm	0:3.10.0-862.rt56.804.el7	kernel-rt-debug-kvm-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-kvm-debuginfo	0:3.10.0-862.rt56.804.el7	kernel-rt-debug-kvm-debuginfo-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debuginfo	0:3.10.0-862.rt56.804.el7	kernel-rt-debuginfo-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debuginfo-common-x86_64	0:3.10.0-862.rt56.804.el7	kernel-rt-debuginfo-common-x86_64-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-devel	0:3.10.0-862.rt56.804.el7	kernel-rt-devel-0:3.10.0-862.rt56.804.el7.x86_64.rpm
Red Hat Enterprise Linux	7	any	kernel-rt-doc	0:3.10.0-862.rt56.804.el7.noarch	kernel-rt-doc-0:3.10.0-862.rt56.804.el7.noarch.noarch.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2016-7913
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-7913
cve	www.cve.org/CVERecord

28 Jun 2026 12:31Current

7.1High risk

Vulners AI Score7.1

CVSS 3.17.8

CVSS 29.3

EPSS0.02156