Issue metadata
Sign in to add a comment
|
CVE-2017-14991 CrOS: Vulnerability reported in Linux kernel |
||||||||||||||||||||||
Issue descriptionVOMIT (go/vomit) has received an external vulnerability report for the Linux kernel. Advisory: CVE-2017-14991 Details: http://vomit.googleplex.com/advisory?id=CVE/CVE-2017-14991 CVSS severity score: 2.1/10.0 Description: The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SG_GET_REQUEST_TABLE ioctl call for /dev/sg0. This bug was filed by http://go/vomit Please contact us at vomit-team@google.com if you need any assistance.
,
Oct 14 2017
Note: Will fix in chromeos-4.4 with the merge of 4.4.92 since there are several other fixes in the affected file. Will need to determine if all those patches are needed in backports and throttle branches.
,
Oct 15 2017
,
Oct 16 2017
,
Oct 16 2017
,
Nov 3 2017
Bug is fixed in chromeos-4.4. wonderfly@: Can you determine if this patch is needed in M-62 and/or M-63 for Lakitu ?
,
Nov 6 2017
No, this doesn't affect lakitu at all.
,
Nov 6 2017
Marking as WontFix: Not needed for Lakitu, limited impact and too complex for older kernels, not worth the risk for stable releases. |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by groeck@google.com
, Oct 14 2017Upstream 3e0097499839 ("scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE").