Issue metadata
Sign in to add a comment
|
CrOS: CVE-2017-9984: Vulnerability reported in Linux kernel |
||||||||||||||||||||||
Issue descriptionVOMIT (go/vomit) has received an external vulnerability report for the Linux kernel. Advisory: CVE-2017-9984 Details: http://vomit.googleplex.com/advisory?id=CVE/CVE-2017-9984 CVSS severity score: 7.2/10.0 Description: The snd_msnd_interrupt function in sound/isa/msnd/msnd_pinnacle.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecified other impact by changing the value of a message queue head pointer between two kernel reads of that value, aka a "double fetch" vulnerability. This bug was filed by http://go/vomit Please contact us at vomit-team@google.com if you need any assistance.
,
Jul 3 2017
See also https://bugzilla.kernel.org/show_bug.cgi?id=196131 Only affects sound devices connected through ISA bus, which we don't have. Upstream does not currently have a fix. If a fix will be provided, we'll get it through a stable merge in 4.4. Won't fix in older kernels.
,
Jul 3 2017
,
Jul 3 2017
,
Jul 3 2017
Issue 738670 has been merged into this issue. |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by dominickn@chromium.org
, Jul 3 2017Owner: groeck@chromium.org
Status: Assigned (was: Untriaged)