Issue metadata
Sign in to add a comment
|
CrOS: Vulnerability reported in Linux kernel |
||||||||||||||||||||||
Issue descriptionVOMIT (go/vomit) has received an external vulnerability report for the Linux kernel. Advisory: CVE-2017-8831 Details: http://vomit.googleplex.com/advisory?id=CVE/CVE-2017-8831 CVSS severity score: 7.2/10.0 Description: The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.10.14 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch" vulnerability. This bug was filed by http://go/vomit Please contact us at vomit-team@google.com if you need any assistance.
,
May 16 2017
The driver is not used in any Chrome OS kernel, and a fix is not yet available upstream. We could apply the proposed fix from https://bugzilla.kernel.org/show_bug.cgi?id=195559, but since we don't use this code it would only add unnecessary deviation from upstream with no gain. Presumably we'll pull in a fix through a later stable merge into chromeos-4.4 after it is available upstream. Bothering with older kernels appears unnecessary since we don't use the driver, and it is quite unlikely that we'll add new hardware support to older kernels. |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by wfh@chromium.org
, May 16 2017