New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 636787 link

Starred by 1 user
Status: WontFix
Owner:
groeck@chromium.org
Closed: Aug 2016
Cc:
dtor@chromium.org
snanda@chromium.org
groeck@chromium.org
rickyz@chromium.org
chromeos-kernel-security-bug-access@google.com
Components:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: 1
Type: Bug-Security



Sign in to add a comment

CrOS: Vulnerability reported in sys-kernel/chromeos-kernel-3_10

Project Member Reported by vomit.go...@appspot.gserviceaccount.com, Aug 11 2016 
Automated analysis has detected that the following third party packages have had vulnerabilities publicly reported. 

NOTE: There may be several bugs listed below - in almost all cases, all bugs can be quickly addressed by upgrading to the latest version of the package.

Package Name: sys-kernel/chromeos-kernel-3_10
Package Version: [cpe:/o:linux:linux_kernel:3.10.18]


Advisory: CVE-2016-2064
  Details: https://vomit.googleplex.com/advisory?id=CVE/CVE-2016-2064
  CVSS severity score: 7.2/10.0
  Confidence: high
  Description:

sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted application that makes an ioctl call specifying many commands.

Comment 1 by och...@chromium.org, Aug 11 2016

Owner: rickyz@chromium.org
Status: Assigned (was: Untriaged)
rickyz: could you help triage this?

Comment 2 by och...@chromium.org, Aug 12 2016

Components: OS>Kernel

Comment 3 by rickyz@chromium.org, Aug 12 2016

Cc: rickyz@chromium.org
 Issue 637142  has been merged into this issue.

Comment 4 by rickyz@chromium.org, Aug 12 2016

Owner: puneetster@chromium.org
This affects 3.8 a well (see duped bug in c3).

Puneet, do you know who is good point of contact for vomit kernel bugs? Thanks!

Comment 5 by puneetster@chromium.org, Aug 15 2016

Cc: groeck@chromium.org dtor@chromium.org snanda@chromium.org
Owner: snanda@chromium.org
You should talk with Sameer about this.  We might set up a rotation for tracking these things.

Comment 6 by snanda@chromium.org, Aug 15 2016 

Ricky, lets chat.  I think we will want couple of kernel folks (prboably groeck & dtor) as the initial contacts and then we will need to fan out from there depending on the volume of issues coming in.

Comment 7 by groeck@chromium.org, Aug 15 2016

Owner: groeck@chromium.org
Status: WontFix (was: Assigned)
Code is not in Chrome OS code base; checked all Chrome OS branches from 3.8 to 4.4.

Assigning to myself as contact point and setting state to WontFix (Chrome OS not affected).
Project Member

Comment 8 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment