Lucene search
+L

56 matches found

CNVD
CNVD
added 2017/12/06 12:0 a.m.4 views

Google Android Kernel Sound timer elevation of privilege vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Kernel Sound timer is one of the kernel sound timer components used in the Kernel Sound timer is a kernel sound timer...

7.8CVSS7.2AI score0.00191EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/12/01 12:44 a.m.4 views

kernel: information leak due to a data race in ALSA timer

It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this flaw to read information belonging to other users...

5.5CVSS7.1AI score0.00721EPSS
Exploits0References4
OSV
OSV
added 2017/06/17 6:29 p.m.1 views

DEBIAN-CVE-2017-1000380

sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents may be disclosed when a read and an ioctl happen at the same ti...

5.5CVSS7AI score0.00721EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/01/17 5:47 p.m.7 views

kernel: sound: a race condition in the kernel sound timer in snd_timer_user_read()

A race condition was found in the Linux kernel's sound timer code in the sndtimeruserread function in the sound/core/timer.c file. An unprivileged attacker can exploit the race condition to cause an out-of-bound access which may lead to a system crash or other unspecified impact. Due to the natur...

7.8CVSS7.1AI score0.00191EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.5 views

kernel: sound: a race condition in the kernel sound timer in snd_timer_user_read()

A race condition was found in the Linux kernel's sound timer code in the sndtimeruserread function in the sound/core/timer.c file. An unprivileged attacker can exploit the race condition to cause an out-of-bound access which may lead to a system crash or other unspecified impact. Due to the natur...

7.8CVSS7.1AI score0.00191EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/11/03 8:6 a.m.6 views

kernel: sound: a race condition in the kernel sound timer in snd_timer_user_read()

A race condition was found in the Linux kernel's sound timer code in the sndtimeruserread function in the sound/core/timer.c file. An unprivileged attacker can exploit the race condition to cause an out-of-bound access which may lead to a system crash or other unspecified impact. Due to the natur...

7.8CVSS7.1AI score0.00191EPSS
Exploits0References4
OSV
OSV
added 2016/05/23 10:59 a.m.7 views

DEBIAN-CVE-2016-4578

sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the 1 sndtimeruserccallback and 2 sndtimerusertinterrupt...

5.5CVSS6.4AI score0.01202EPSS
Exploits5References1
OSV
OSV
added 2016/05/23 10:59 a.m.3 views

DEBIAN-CVE-2016-4569

The sndtimeruserparams function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface...

5.5CVSS5.7AI score0.00835EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2016/05/23 10:0 a.m.45 views

CVE-2016-4569

The sndtimeruserparams function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface...

5.5CVSS6.4AI score0.00835EPSS
Exploits0
CVE
CVE
added 2016/05/23 10:0 a.m.230 views

CVE-2016-4578

CVE-2016-4578 affects the Linux kernel’s ALSA timer subsystem (snd_timer_user_ccallback and snd_timer_user_tinterrupt). The provided sources confirm a local information leak: if the snd_timer interfaces are used, uninitialized r1 data can be read from kernel stack memory, enabling a local attacke...

5.5CVSS5.9AI score0.01202EPSS
Exploits5References31Affected Software1
OSV
OSV
added 2016/04/27 5:59 p.m.7 views

DEBIAN-CVE-2016-2548

sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service system crash via a crafted ioctl call, related to the 1 sndtimerclose and 2 sndtimerstop functions...

6.2CVSS7AI score0.00451EPSS
Exploits0References1
OSV
OSV
added 2016/04/27 5:59 p.m.7 views

CVE-2016-2548

sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service system crash via a crafted ioctl call, related to the 1 sndtimerclose and 2 sndtimerstop functions...

6.2CVSS8.2AI score
Exploits0References20
Prion
Prion
added 2016/04/27 5:59 p.m.20 views

Design/Logic Flaw

sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service system crash via a crafted ioctl call, related to the 1 sndtimerclose and 2 sndtimerstop functions...

4.9CVSS6.1AI score0.00451EPSS
Exploits0References20Affected Software1
OSV
OSV
added 2016/02/24 12:0 a.m.4 views

UBUNTU-CVE-2016-2548

sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service system crash via a crafted ioctl call, related to the 1 sndtimerclose and 2 sndtimerstop functions...

6.2CVSS6.8AI score0.00451EPSS
Exploits0References13
OSV
OSV
added 2016/02/24 12:0 a.m.4 views

UBUNTU-CVE-2016-2547

sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...

5.1CVSS6.7AI score0.00337EPSS
Exploits0References13
OSV
OSV
added 2016/02/24 12:0 a.m.6 views

UBUNTU-CVE-2016-2546

sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...

5.1CVSS6.7AI score0.00337EPSS
Exploits0References13
Rows per page
Query Builder